<!DOCTYPE html>
<html >
<head>
	<meta charset="UTF-8" />
	<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
	<meta name="viewport" content="width=device-width, initial-scale=1.0" />
	<meta http-equiv="X-UA-Compatible" content="IE=Edge">
	<link rel="profile" href="http://gmpg.org/xfn/11" />
	<link rel="pingback" href="https://securelist.com/xmlrpc.php" />
	<link rel="apple-touch-icon" sizes="180x180" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/favicons/apple-touch-icon.png">
	<link rel="icon" type="image/png" sizes="32x32" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/favicons/favicon-32x32.png">
	<link rel="icon" type="image/png" sizes="16x16" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/favicons/favicon-16x16.png">
	<link rel="manifest" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/favicons/site.webmanifest">
	<link rel="shortcut icon" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/favicons/favicon.ico">
	<title>An overview of targeted attacks and APTs on Linux | Securelist</title>
<meta name='robots' content='max-image-preview:large' />

<!-- The SEO Framework by Sybre Waaijer -->
<meta name="keywords" content="APT,Cyber espionage,Linux,Targeted Attacks,Vulnerabilities and exploits" />
<meta name="description" content="The GReAT team at Kaspersky publishes regular summaries of APT activity. In this report, we focus on the targeting of Linux resources by APT threat actors." />
<meta property="og:image" content="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code.jpg" />
<meta property="og:type" content="article" />
<meta property="og:title" content="An overview of targeted attacks and APTs on Linux" />
<meta property="og:description" content="The GReAT team at Kaspersky publishes regular summaries of APT activity. In this report, we focus on the targeting of Linux resources by APT threat actors." />
<meta property="og:url" content="https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/" />
<meta name="twitter:card" content="summary_large_image" />
<meta name="twitter:site" content="@Securelist" />
<meta name="twitter:creator" content="@Securelist" />
<meta name="twitter:title" content="An overview of targeted attacks and APTs on Linux" />
<meta name="twitter:description" content="The GReAT team at Kaspersky publishes regular summaries of APT activity. In this report, we focus on the targeting of Linux resources by APT threat actors." />
<meta name="twitter:image" content="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code.jpg" />
<link rel="canonical" href="https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/" />
<script type="application/ld+json">{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"item":{"@id":"https://securelist.com/","name":"Securelist"}},{"@type":"ListItem","position":2,"item":{"@id":"https://securelist.com/category/publications/","name":"Publications"}},{"@type":"ListItem","position":3,"item":{"@id":"https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/","name":"An overview of targeted attacks and APTs on Linux"}}]}</script>
<script type="application/ld+json">{"@context":"https://schema.org","@type":"NewsArticle","mainEntityOfPage":{"@type":"WebPage","@id":"https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/"},"headline":"An overview of targeted attacks and APTs on Linux","image":"https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code.jpg","datePublished":"2020-09-10T10:00:39+00:00","dateModified":"2021-04-29T08:18:50+00:00","author":{"@type":"Person","name":"GReAT"},"publisher":{"@type":"Organization","name":"Kaspersky","logo":{"@type":"ImageObject","url":"https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/06/04065705/article-logo-small_new.png","width":60,"height":60}},"description":"The GReAT team at Kaspersky publishes regular summaries of APT activity. In this report, we focus on the targeting of Linux resources by APT threat actors."}</script>
<!-- / The SEO Framework by Sybre Waaijer | 17.14ms meta | 0.63ms boot -->

<link rel='dns-prefetch' href='//kasperskycontenthub.com' />
<link rel='dns-prefetch' href='//securelist.com' />
<link rel='dns-prefetch' href='//www.google.com' />
<link rel='dns-prefetch' href='//media.kaspersky.com' />
<link rel='dns-prefetch' href='//s.w.org' />
<link rel="alternate" type="application/rss+xml" title="Securelist - English - Global - securelist.com &raquo; Feed" href="https://securelist.com/feed/" />
<link rel="alternate" type="application/rss+xml" title="Securelist - English - Global - securelist.com &raquo; Comments Feed" href="https://securelist.com/comments/feed/" />
<link rel="alternate" type="application/rss+xml" title="Securelist - English - Global - securelist.com &raquo; An overview of targeted attacks and APTs on Linux Comments Feed" href="https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/feed/" />
<link rel='stylesheet' id='crayon-group-css' href='//assets.kasperskycontenthub.com/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/crayon-syntax-highlighter/css/min/crayon.min.css,wp-includes/css/dist/block-library/style.min.css,wp-content/plugins/jquery-collapse-o-matic/light_style.css,wp-content/plugins/honeypot-comments/public/assets/css/public.css,wp-content/plugins/kspr_twitter_pullquote/css/style.css,wp-content/themes/securelist2020/assets/css/main.css,wp-content/plugins/kaspersky-social-sharing/assets/css/style.css,wp-content/plugins/kaspersky-social-sharing/assets/css/custom.css&#038;ver=4f063e4c' type='text/css' media='all' />
<link rel='stylesheet' id='taxonomy-image-plugin-public-group-css' href='//assets.kasperskycontenthub.com/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/taxonomy-images/css/style.css&#038;ver=4f063e4c' type='text/css' media='screen' />
<script type='text/javascript' src='https://securelist.com/wp-content/plugins/kaspersky-enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp' id='jquery-core-js'></script>
<script type='text/javascript' id='kaspersky-sso-integration-js-extra'>
/* <![CDATA[ */
var kasperskySSOIntegrationData = {"authorizationURL":"https:\/\/auth.ca.uis.kaspersky.com\/connect\/authorize?client_id=securelist&client_name=Securelist&redirect_uri=https%3A%2F%2Fsecurelist.com%2Fkaspersky-sso%2Flogin%2F&response_type=code&scope=openid email profile offline_access","endSessionURL":"https:\/\/auth.ca.uis.kaspersky.com\/connect\/endsession?id_token_hint=eyJhbGciOiJSUzI1NiIsImtpZCI6IjMyQjM3MzlBMEJDMDQ3OTFGOTk3QTUxMkQ1Mzg2QTA2QzU1REJDMEEiLCJ4NXQiOiJNck56bWd2QVI1SDVsNlVTMVRocUJzVmR2QW8iLCJ0eXAiOiJKV1QifQ.eyJuYmYiOjE2NDAyODg1MzMsImV4cCI6MTY0MDM3NDkzMywiaXNzIjoiaHR0cHM6Ly9hdXRoLmNhLnVpcy5rYXNwZXJza3kuY29tIiwiYXVkIjoic2VjdXJlbGlzdCIsImlhdCI6MTY0MDI4ODUzMywiYXRfaGFzaCI6IkFnQjk4b2hoLUwtcVF3ZjU0M2NCQkEiLCJzaWQiOiI0VUNLbkJ3OXNRTDhLYXZWY1R0dXZRIiwic3ViIjoiMDE0ZDFjYzEtNDI5Yy00OTRlLTkwMDctYjcwMGI5NDRhYTU3IiwiYXV0aF90aW1lIjoxNjQwMjg4NTMyLCJpZHAiOiJLYXNwZXJza3lJZCIsImthc3BlcnNreS5zdWJfdmVyc2lvbiI6IjUifQ.ZpzSyRV_HWG3yI7jm96mZsofdiG0GyvRKW79eCUVPrKFsnGKvUO0X5xsm_UL4s41SmunyCasOINBRSPlCNJb-soypDFgGXU-u9Qp9AMnOamQvvX6kBX4OVa27Wex7bzMtlK6h46sA6v-ddqAg_0s8hgdp7KxAMTNfCdFzzEYm3bLKk5U2t6efHHii7Nr3ybkHWUbH2lA5cnt7FIjUQJOGIiYZcZm2i4YxQTDEr-TYY0ZIkUhi4OPE-uytL4mDIxshq3AMrF9RjVo6nbGUcwea6tO1oI_fQ06h8XIU40C2dyzRwROD0q3GMD5h_DPOrvnCbnmsvwm8Xp3seFeOOUXJg&post_logout_redirect_uri=https:\/\/securelist.com\/kaspersky-sso\/logout\/?path=https:\/\/securelist.com\/webinars\/log4shell-vulnerability-how-to-stay-secure\/"};
/* ]]> */
</script>
<script type='text/javascript' id='kss_js-js-extra'>
/* <![CDATA[ */
var kss = {"twitter_account":"Securelist"};
/* ]]> */
</script>
<script type='text/javascript' src='//assets.kasperskycontenthub.com/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/kaspersky-sso-integration/assets/js/main.js,wp-content/plugins/honeypot-comments/public/assets/js/public.js,wp-content/plugins/kspr_twitter_pullquote/js/kaspersky-twitter-pullquote.js,wp-content/plugins/kaspersky-social-sharing/assets/js/social-share.js&#038;ver=4f063e4c'></script>
<link rel="alternate" hreflang="x-default" href="https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/" />
		<script>
			window.dataLayer = window.dataLayer || [];
			window.dataLayer.push({
				'Author' : 'GReAT',
				'PostId' : '98440',
				'PublicationDate' : '2020-09-10',
				'Categories': 'Publications',
				'Tags': 'APT, Cyber espionage, Linux, Targeted attacks, Vulnerabilities and exploits',
			});
		</script>
						<!-- Google Tag Manager -->
		<script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':
		new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],
		j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src=
		'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);
		})(window,document,'script','dataLayer','GTM-5CGZ3HG');</script>
		<!-- End Google Tag Manager -->

		<!-- Google Tag Manager -->
		<script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':
		new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],
		j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src=
		'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);
		})(window,document,'script','dataLayer','GTM-WZ7LJ3');</script>
		<!-- End Google Tag Manager -->
		<link rel="https://api.w.org/" href="https://securelist.com/wp-json/" /><link rel="alternate" type="application/json" href="https://securelist.com/wp-json/wp/v2/posts/98440" /><link rel="EditURI" type="application/rsd+xml" title="RSD" href="https://securelist.com/xmlrpc.php?rsd" />
<link rel="wlwmanifest" type="application/wlwmanifest+xml" href="https://securelist.com/wp-includes/wlwmanifest.xml" /> 
<link rel="alternate" type="application/json+oembed" href="https://securelist.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fsecurelist.com%2Fan-overview-of-targeted-attacks-and-apts-on-linux%2F98440%2F" />
<link rel="alternate" type="text/xml+oembed" href="https://securelist.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fsecurelist.com%2Fan-overview-of-targeted-attacks-and-apts-on-linux%2F98440%2F&#038;format=xml" />
<script type="text/javascript">
var sNew = document.createElement("script");
sNew.async = true;
sNew.src = "https://kasperskycontenthub.com/?dm=ed1f9e435dc885292eab65620c51f3fb&action=load&blogid=43&siteid=1&t=1555971960&back=https%3A%2F%2Fsecurelist.com%2Fan-overview-of-targeted-attacks-and-apts-on-linux%2F98440%2F"
var s0 = document.getElementsByTagName('script')[0];
s0.parentNode.insertBefore(sNew, s0);
</script>
			<meta property="fb:pages" content="115250821818252" />
							<meta property="ia:markup_url" content="https://securelist.com/an-overview-of-targeted-attacks-and-apts-on-linux/98440/?ia_markup=1" />
				<script type="text/javascript">
document.write(unescape("%3Cscript src='//munchkin.marketo.net/munchkin.js' type='text/javascript'%3E%3C/script%3E"));
</script>
<script>Munchkin.init('802-IJN-240');</script><!-- Facebook Pixel Code -->
<script>
	!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?
	n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;
	n.push=n;n.loaded=!0;n.version='2.0';n.queue=[];t=b.createElement(e);t.async=!0;
	t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,
	document,'script','//connect.facebook.net/en_US/fbevents.js');
	fbq('init', '839281392784015');
	fbq('track', 'PageView');
</script>
<!-- End Facebook Pixel Code -->
        
<script>
(function() {
    var s = document.getElementsByTagName('script')[0]
      , p = document.createElement('script');
    p.async = 'async';
    p.src = '//rum-static.pingdom.net/pa-560b0cc5abe53daf128a2dfc.js';
    s.parentNode.insertBefore(p, s);
})();
</script>


        <script type="text/javascript">
            var jQueryMigrateHelperHasSentDowngrade = false;

			window.onerror = function( msg, url, line, col, error ) {
				// Break out early, do not processing if a downgrade reqeust was already sent.
				if ( jQueryMigrateHelperHasSentDowngrade ) {
					return true;
                }

				var xhr = new XMLHttpRequest();
				var nonce = 'ced247c613';
				var jQueryFunctions = [
					'andSelf',
					'browser',
					'live',
					'boxModel',
					'support.boxModel',
					'size',
					'swap',
					'clean',
					'sub',
                ];
				var match_pattern = /\)\.(.+?) is not a function/;
                var erroredFunction = msg.match( match_pattern );

                // If there was no matching functions, do not try to downgrade.
                if ( typeof erroredFunction !== 'object' || typeof erroredFunction[1] === "undefined" || -1 === jQueryFunctions.indexOf( erroredFunction[1] ) ) {
                    return true;
                }

                // Set that we've now attempted a downgrade request.
                jQueryMigrateHelperHasSentDowngrade = true;

				xhr.open( 'POST', 'https://securelist.com/wp-admin/admin-ajax.php' );
				xhr.setRequestHeader( 'Content-Type', 'application/x-www-form-urlencoded' );
				xhr.onload = function () {
					var response,
                        reload = false;

					if ( 200 === xhr.status ) {
                        try {
                        	response = JSON.parse( xhr.response );

                        	reload = response.data.reload;
                        } catch ( e ) {
                        	reload = false;
                        }
                    }

					// Automatically reload the page if a deprecation caused an automatic downgrade, ensure visitors get the best possible experience.
					if ( reload ) {
						location.reload();
                    }
				};

				xhr.send( encodeURI( 'action=jquery-migrate-downgrade-version&_wpnonce=' + nonce ) );

				// Suppress error alerts in older browsers
				return true;
			}
        </script>

			<div id="fb-root"></div>
	<script>(function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0];if(d.getElementById(id))return;js=d.createElement(s);js.id=id;js.src="//connect.facebook.net/en_US/all.js#xfbml=1&appId=160639043985664";fjs.parentNode.insertBefore(js,fjs);}(document,'script','facebook-jssdk'));</script>
	<script>(function(){var po=document.createElement('script');po.type='text/javascript';po.async=true;po.src='//apis.google.com/js/platform.js';var s=document.getElementsByTagName('script')[0];s.parentNode.insertBefore(po,s);})();</script>
	<link rel="icon" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/content/site-icon.png" sizes="32x32" />
<link rel="icon" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/content/site-icon.png" sizes="192x192" />
<link rel="apple-touch-icon" href="https://securelist.com/wp-content/themes/securelist2020/assets/images/content/site-icon.png" />
<meta name="msapplication-TileImage" content="https://securelist.com/wp-content/themes/securelist2020/assets/images/content/site-icon.png" />
</head>

<body class="post-template-default single single-post postid-98440 single-format-standard lang-en_US c-theme--light">
	<!-- Google Tag Manager (noscript) -->
	<noscript><iframe src="https://www.googletagmanager.com/ns.html?id=GTM-5CGZ3HG" height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript>
	<!-- End Google Tag Manager (noscript) -->

	<!-- Google Tag Manager (noscript) -->
	<noscript><iframe src="https://www.googletagmanager.com/ns.html?id=GTM-WZ7LJ3" height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript>
	<!-- End Google Tag Manager (noscript) -->
		
<div id="site-top" class="site-top">
	<div class="container">
		<nav class="site-nav">
			<div class="label">
				<p>Solutions for:</p>
			</div>
			<ul id="menu-product-menu-daily-nxgen" class="site-selector"><li><a target="_blank" href="https://kaspersky.com/home-security?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______" class="font-icons icon-home menu-item menu-item-type-custom menu-item-object-custom menu-item-87907">Home Products</a></li>
<li><a title="font-icons icon-small-business" target="_blank" href="https://kaspersky.com/small-business-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______" class="font-icons icon-small-business menu-item menu-item-type-custom menu-item-object-custom menu-item-87908">Small Business 1-50 employees</a></li>
<li><a target="_blank" href="https://kaspersky.com/small-to-medium-business-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______" class="font-icons icon-medium-business menu-item menu-item-type-custom menu-item-object-custom menu-item-87909">Medium Business 51-999 employees</a></li>
<li><a target="_blank" href="https://kaspersky.com/enterprise-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______" class="font-icons icon-enterprise menu-item menu-item-type-custom menu-item-object-custom menu-item-87910">Enterprise 1000+ employees</a></li>
</ul>		</nav>
	</div>
</div>

<header id="site-header" class="site-header js-sticky-mobile-header">
	<div class="container">
		<a href="" class="c-page-nav-toggle js-mobile-menu-toggle">
			<span class="c-page-nav-toggle__icon">
				<span></span>
				<span></span>
				<span></span>
			</span>
		</a>
		<a href="" class="menu-toggle">
			<span></span>
			<span></span>
			<span></span>
		</a>
		<div class="c-site-title">
			<div class="c-site-logo__group">
				<a href="https://securelist.com/" class="c-site-logo c-site-logo--basic"></a>
								<span class="c-site-tagline">by Kaspersky</span>
			</div>
		</div>

		<ul id="menu-my-kaspersky" class="menu-utility sticky-utility"><li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87905"><a href="https://companyaccount.kaspersky.com/account/login?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">CompanyAccount</a>
<li class="sticky-item sticky-xl-only menu-item menu-item-type-custom menu-item-object-custom menu-item-87906"><a href="https://www.kaspersky.com/enterprise-security/contact?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Get In Touch</a>
<li class="securelist-theme-switcher menu-item menu-item-type-custom menu-item-object-custom menu-item-99824"><a href="#" class="js-theme-switcher"><i class="font-icons icon-moon"></i>Dark mode<span class="u-hidden u-inline--dark"> off</span></a>
<li class="dropdown"><a href="#" class="">English</a><ul class="sub-menu-regular"><li><a href="https://securelist.ru">Russian</a></li><li><a href="https://securelist.lat">Spanish</a></li><li><a href="https://de.securelist.com">German</a></li><li><a href="https://securelist.it">Italian</a></li><li><a href="https://securelist.fr">French</a></li></ul>
</ul>
		<div class="c-page-search js-main-search">
			<form class="c-page-search__form c-page-search__form--small js-wizardinfosys_autosearch_form" full_search_url="https://securelist.com/?s=%q%" action="https://securelist.com/" method="get">
	<div class="c-form-element c-form-element--style-fill">
		<div class="c-form-element__field wp_autosearch_form_wrapper">
			<input name="s" class="c-form-element__text wp_autosearch_input ac_input" type="text" value="" placeholder="Search..." autocomplete="off">
		</div>
	</div>
	<button class="c-button c-button--icon wp_autosearch_submit"><svg class="o-icon o-svg-icon o-svg-large"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-search"></use></svg></button>
</form>
			<div class="c-page-search__toggle js-main-search-toggle"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-search"></use></svg></div>
		</div>
		<nav class="main-nav">
			<ul id="menu-corp-menu" class="main-menu"><li class="dropdown mega menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87706"><a href="https://www.kaspersky.com/enterprise-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Solutions</a>
<ul class="submenu">
<li class="first full-width featured featured-smaller menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87707">
	<ul class="featured section-col-l-3 no-gutter">
<li class="show-figure smaller-item icon-endpoint-security_solutions menu-item menu-item-type-custom menu-item-object-custom menu-item-87708"><figure><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/endpoint-security_solutions.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Endpoint Security</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-hybrid-cloud-security_solutions menu-item menu-item-type-custom menu-item-object-custom menu-item-87709"><figure><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/hybrid-cloud-security_solutions.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Hybrid Cloud Security</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-iot-embed-security menu-item menu-item-type-custom menu-item-object-custom menu-item-87710"><figure><a href="https://www.kaspersky.com/enterprise-security/embedded-security-internet-of-things?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/iot-embed-security.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/embedded-security-internet-of-things?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Internet of Things &#038; Embedded Security</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/embedded-security-internet-of-things?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-threat-management menu-item menu-item-type-custom menu-item-object-custom menu-item-87711"><figure><a href="https://www.kaspersky.com/enterprise-security/threat-management-defense-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/threat-management.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/threat-management-defense-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Threat Management and Defense</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/threat-management-defense-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-transportation-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87712"><figure><a href="https://www.kaspersky.com/enterprise-security/industrial-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/transportation-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/industrial-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Industrial Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/industrial-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-fraud-prevention menu-item menu-item-type-custom menu-item-object-custom menu-item-87713"><figure><a href="https://www.kaspersky.com/enterprise-security/fraud-prevention?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/fraud-prevention.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/fraud-prevention?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Fraud Prevention</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/fraud-prevention?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
	</ul>

</ul>

<li class="dropdown mega menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87714"><a href="https://www.kaspersky.com/enterprise-security/industries?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Industries</a>
<ul class="submenu">
<li class="first featured featured-smaller menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87715">
	<ul class="featured section-col-l-3 no-gutter">
<li class="show-figure smaller-item icon-national-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87716"><figure><a href="https://www.kaspersky.com/enterprise-security/national-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/national-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/national-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">National Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/national-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-industrial-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87717"><figure><a href="https://www.kaspersky.com/enterprise-security/industrial?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/industrial-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/industrial?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Industrial Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/industrial?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-financial-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87718"><figure><a href="https://www.kaspersky.com/enterprise-security/finance?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/financial-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/finance?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Finance Services Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/finance?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-healthcare-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87719"><figure><a href="https://www.kaspersky.com/enterprise-security/healthcare?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/healthcare-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/healthcare?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Healthcare Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/healthcare?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-transportation-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87720"><figure><a href="https://www.kaspersky.com/enterprise-security/transportation-cybersecurity-it-infrastructure?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/transportation-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/transportation-cybersecurity-it-infrastructure?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Transportation Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/transportation-cybersecurity-it-infrastructure?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-retail-cybersecurity menu-item menu-item-type-custom menu-item-object-custom menu-item-87721"><figure><a href="https://www.kaspersky.com/enterprise-security/retail-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/retail-cybersecurity.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/retail-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Retail Cybersecurity</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/retail-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
	</ul>

<li>
	<ul class="regular">
<li class="title"><h6>Other Industries</h6>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87724"><a href="https://www.kaspersky.com/enterprise-security/telecom?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Telecom Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87725"><a href="https://www.kaspersky.com/enterprise-security/industries?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">View all</a>
	</ul>

</ul>

<li class="dropdown mega menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87726"><a href="https://www.kaspersky.com/enterprise-security/products?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Products</a>
<ul class="submenu">
<li class="first featured featured-smaller menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87728">
	<ul class="featured section-col-l-3 no-gutter">
<li class="show-figure smaller-item icon-endpoint-security_products menu-item menu-item-type-custom menu-item-object-custom menu-item-87727"><figure><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/endpoint-security_products.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Endpoint Security</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-endpoint-detection-and-response menu-item menu-item-type-custom menu-item-object-custom menu-item-87729"><figure><a href="https://www.kaspersky.com/enterprise-security/endpoint-detection-response-edr?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/endpoint-detection-and-response.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/endpoint-detection-response-edr?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Endpoint Detection and Response</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/endpoint-detection-response-edr?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-hybrid-cloud-security_products menu-item menu-item-type-custom menu-item-object-custom menu-item-87730"><figure><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/hybrid-cloud-security_products.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Hybrid Cloud Security</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-anti-targeted-attack-platform menu-item menu-item-type-custom menu-item-object-custom menu-item-87731"><figure><a href="https://www.kaspersky.com/enterprise-security/anti-targeted-attack-platform?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/anti-targeted-attack-platform.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/anti-targeted-attack-platform?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Anti Targeted Attack Platform</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/anti-targeted-attack-platform?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-private-security-network menu-item menu-item-type-custom menu-item-object-custom menu-item-87732"><figure><a href="https://www.kaspersky.com/enterprise-security/private-security-network?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/private-security-network.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/private-security-network?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Private Security Network</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/private-security-network?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-embedded-systems-security menu-item menu-item-type-custom menu-item-object-custom menu-item-87733"><figure><a href="https://www.kaspersky.com/enterprise-security/embedded-systems?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/embedded-systems-security.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/embedded-systems?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Embedded Systems Security</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/embedded-systems?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
	</ul>

<li>
	<ul class="regular">
<li class="title"><h6>Other Products</h6>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87736"><a href="https://www.kaspersky.com/enterprise-security/mail-server-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security for Mail Server</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87737"><a href="https://www.kaspersky.com/enterprise-security/ddos-protection?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky DDoS Protection</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87738"><a href="https://www.kaspersky.com/enterprise-security/mobile?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Mobile Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87739"><a href="https://www.kaspersky.com/enterprise-security/storage-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security for Storage</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87740"><a target="_blank" href="https://www.kaspersky.com/enterprise-security/products?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">View All</a>
	</ul>

</ul>

<li class="dropdown mega menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87741"><a href="https://www.kaspersky.com/enterprise-security/services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Services</a>
<ul class="submenu">
<li class="first featured featured-smaller menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87742">
	<ul class="featured section-col-l-3 no-gutter">
<li class="show-figure smaller-item icon-cybersecurity-services menu-item menu-item-type-custom menu-item-object-custom menu-item-87743"><figure><a href="https://www.kaspersky.com/enterprise-security/cybersecurity-services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/cybersecurity-services.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/cybersecurity-services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Cybersecurity Services</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/cybersecurity-services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-security-awareness menu-item menu-item-type-custom menu-item-object-custom menu-item-87744"><figure><a href="https://www.kaspersky.com/enterprise-security/security-awareness?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/security-awareness.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/security-awareness?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Security Awareness</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/security-awareness?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-premium-support menu-item menu-item-type-custom menu-item-object-custom menu-item-87745"><figure><a href="https://www.kaspersky.com/enterprise-security/premium-support?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/premium-support.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/premium-support?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Premium Support</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/premium-support?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-threat-intelligence menu-item menu-item-type-custom menu-item-object-custom menu-item-87746"><figure><a href="https://www.kaspersky.com/enterprise-security/threat-intelligence?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/threat-intelligence.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/threat-intelligence?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Threat Intelligence</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/threat-intelligence?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-threat-hunting menu-item menu-item-type-custom menu-item-object-custom menu-item-87747"><figure><a href="https://www.kaspersky.com/enterprise-security/targeted-attack-discovery?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/threat-hunting.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/targeted-attack-discovery?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Targeted Attack Discovery</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/targeted-attack-discovery?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
<li class="show-figure smaller-item icon-incident-response menu-item menu-item-type-custom menu-item-object-custom menu-item-87748"><figure><a href="https://www.kaspersky.com/enterprise-security/incident-response?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/enterprise-menu-icons/incident-response.png"</a></figure><a href="https://www.kaspersky.com/enterprise-security/incident-response?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><span class="surtitle">Kaspersky</span>Incident Response</a><div class="desc"><p><a href="https://www.kaspersky.com/enterprise-security/incident-response?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Learn More</a></p></div>
	</ul>

<li>
	<ul class="regular">
<li class="title"><h6>Other Services</h6>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87751"><a href="https://www.kaspersky.com/enterprise-security/professional-services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Professional Services</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87752"><a href="https://www.kaspersky.com/enterprise-security/security-assessment?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security Assessment</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87753"><a href="https://www.kaspersky.com/enterprise-security/cyber-security-training?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security Training</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87754"><a href="https://www.kaspersky.com/enterprise-security/cyber-incident-response-communication?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Advanced Cyber Incident Communications</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87755"><a href="https://www.kaspersky.com/enterprise-security/services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">View All</a>
	</ul>

</ul>

<li class="dropdown menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-87756"><a href="https://www.kaspersky.com/enterprise-security/resources?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Resource Center</a>
<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87757"><a href="https://www.kaspersky.com/enterprise-security/resources/case-studies?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Case Studies</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87758"><a href="https://www.kaspersky.com/enterprise-security/resources/white-papers?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">White Papers</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87759"><a href="https://www.kaspersky.com/enterprise-security/resources/data-sheets?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Datasheets</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87760"><a href="https://www.kaspersky.com/enterprise-security/wiki-section/home?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Technologies</a>
</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87761"><a href="https://www.kaspersky.com/about/contact?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Contact Us</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87762"><a href="https://www.kaspersky.com/gdpr?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">GDPR</a>
</ul>		</nav>
	</div>
</header>

<div class="mobile-menu-wrapper mobile-menu-wrapper--dark">
	<ul class="mobile-nav" data-back="Back">
		<li class="selector">
			<a href="#modal-newsletter" class="button-link js-modal-open"><i class="font-icons icon-envelope"></i>Subscribe</a>
			<a href="#" class="button-link c-theme-switcher js-theme-switcher"><i class="font-icons icon-moon"></i> Dark mode<span class="u-hidden u-inline--dark"> off</span></a>
							<a href="#" class="button-link js-kaspersky-sso-login"><svg class="o-icon o-svg-icon"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-user"></use></svg>Login</a>
					</li>
		<li class="title">
			<span>Securelist menu</span>
		</li>
		<li class="parent" data-parent data-icon="top-item"><a href="#" class=""><i class="top-item"></i><span>English</span></a><ul class="submenu"><li class="menu-item"><a href="https://securelist.ru">Russian</a></li><li class="menu-item"><a href="https://securelist.lat">Spanish</a></li><li class="menu-item"><a href="https://de.securelist.com">German</a></li><li class="menu-item"><a href="https://securelist.it">Italian</a></li><li class="menu-item"><a href="https://securelist.fr">French</a></li></ul>
<li class="parent" data-parent="SOLUTIONS FOR HOME USERS" data-icon="font-icons icon-home top-item"><a rel="SOLUTIONS FOR HOME USERS" href="#"><i class="font-icons icon-home top-item"></i><span>Home Users</span></a>
<ul class="submenu">
<li class="parent" data-parent="Products" data-icon="top-item no-icon"><a rel="Products" href="https://www.kaspersky.com/home-security?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><span>Products</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87765"><a href="https://www.kaspersky.com/total-security?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Total Security<span></a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87764"><a href="https://www.kaspersky.com/internet-security?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Internet Security<span></a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87763"><a href="https://www.kaspersky.com/antivirus?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Anti-Virus<span></a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87780"><a href="https://www.kaspersky.com/mac-security?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Internet Security for Mac<span></a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87799"><a href="https://www.kaspersky.com/android-security?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><small class="green-top">Kaspersky</small> Internet Security for Android</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87800"><a href="https://www.kaspersky.com/secure-connection?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Secure Connection</a>
<li class="title"><span>Free Tools</span>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87785"><a href="https://www.kaspersky.com/safe-kids?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">Kaspersky Safe Kids</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87787"><a href="https://www.kaspersky.com/password-manager?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">Kaspersky Password Manager</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87801"><a href="https://www.kaspersky.com/free-software-updater?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">Kaspersky Software Updater</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87777"><a href="https://www.kaspersky.com/downloads?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">View more</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87771"><a href="https://www.kaspersky.com/renewal-center/home?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">Renew</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87770"><a href="https://www.kaspersky.com/downloads?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">Downloads</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87858"><a href="https://support.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______#s_tab2">Support</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87859"><a href="https://www.kaspersky.com/resource-center?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______">Resource Center</a>
<li class="parent" data-parent="My Kaspersky" data-icon="top-item no-icon"><a rel="My Kaspersky" href="https://my.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><span>My Kaspersky</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87802"><a href="https://my.kaspersky.com/MyDevices?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><i class="font-icons icon-devices"></i> My Devices</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87803"><a href="https://my.kaspersky.com/MyLicenses?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><i class="font-icons icon-subscriptions"></i> My Products / Subscriptions</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87804"><a href="https://my.kaspersky.com/MyAccount/OrdersHistory?icid=gl_securelisheader_acq_ona_smm__onl_b2c_securelist_prodmen_______"><i class="font-icons icon-card"></i> My Orders</a>
	</ul>

</ul>

<li class="parent" data-parent="SOLUTIONS FOR SMALL BUSINESS" data-icon="font-icons icon-small-business top-item"><a title="(1-50 employees)" rel="SOLUTIONS FOR SMALL BUSINESS" href="#"><i class="font-icons icon-small-business top-item"></i><span>Small Business</span><small>(1-50 employees)</small></a>
<ul class="submenu">
<li class="parent" data-parent="Products" data-icon="top-item no-icon"><a rel="Products" href="https://www.kaspersky.com/small-business-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><span>Products</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87774"><a href="https://www.kaspersky.com/small-business-security/small-office-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Small Office Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87786"><a href="https://www.kaspersky.com/small-to-medium-business-security/cloud?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security Cloud</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87805"><a href="https://www.kaspersky.com/small-to-medium-business-security/endpoint-select?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security for Business Select</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87806"><a href="https://www.kaspersky.com/small-to-medium-business-security/endpoint-advanced?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security for Business Advanced</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87807"><a href="https://www.kaspersky.com/renewal-center/vsb?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Renew</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87808"><a href="https://www.kaspersky.com/small-business-security/downloads?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Downloads</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87809"><a href="https://support.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______#s_tab3">Support</a>
<li class="parent" data-parent="Resource Center" data-icon="top-item no-icon"><a rel="Resource Center" href="https://www.kaspersky.com/small-business-security/resources?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><span>Resource Center</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87811"><a href="https://www.kaspersky.com/small-business-security/resources/insights?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Insights</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87812"><a href="https://www.kaspersky.com/small-business-security/resources/products?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Products &#038; Solutions</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87813"><a href="https://www.kaspersky.com/small-business-security/resources/customers?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Customer Stories</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87814"><a href="https://www.kaspersky.com/small-business-security/resources/industry-awards-and-recognition?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Awards &#038; Recognition</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87815"><a href="https://www.kaspersky.com/small-business-security/resources/technology?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Technology</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87972"><a href="https://www.kaspersky.com/gdpr?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">GDPR</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87973"><a href="https://ksos.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">KSOS Portal</a>
</ul>

<li class="parent" data-parent="SOLUTIONS FOR MEDIUM BUSINESS" data-icon="font-icons icon-medium-business top-item"><a title="(51-999 employees)" rel="SOLUTIONS FOR MEDIUM BUSINESS" href="#"><i class="font-icons icon-medium-business top-item"></i><span>Medium Business</span><small>(51-999 employees)</small></a>
<ul class="submenu">
<li class="parent" data-parent="Products" data-icon="top-item no-icon"><a rel="Products" href="https://www.kaspersky.com/small-to-medium-business-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><span>Products</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87821"><a href="https://www.kaspersky.com/small-to-medium-business-security/cloud?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security Cloud</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87974"><a href="https://www.kaspersky.com/small-to-medium-business-security/microsoft-office-365-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Security for Office 365</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87822"><a href="https://www.kaspersky.com/small-to-medium-business-security/endpoint-select?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security for Business Select</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87823"><a href="https://www.kaspersky.com/small-to-medium-business-security/endpoint-advanced?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security for Business Advanced</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87824"><a href="https://www.kaspersky.com/small-to-medium-business-security/total?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Security for Business Total</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87975"><a href="https://www.kaspersky.com/small-to-medium-business-security/virtualization-hybrid-cloud?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><small class="green-top">Kaspersky</small>Physical, Virtual &#038; Cloud Workloads Security</a>
<li class="title"><span>TARGETED SECURITY SOLUTIONS</span>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87826"><a href="https://www.kaspersky.com/small-to-medium-business-security/mail-server?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Mail Server</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87827"><a href="https://www.kaspersky.com/small-to-medium-business-security/file-server?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">File Server</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87828"><a href="https://www.kaspersky.com/small-to-medium-business-security/mobile?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Mobile</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87829"><a href="https://www.kaspersky.com/small-to-medium-business-security/internet-gateway?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Internet Gateway</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87830"><a href="https://www.kaspersky.com/small-to-medium-business-security/virtualization-hybrid-cloud?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Virtualization and Hybrid Cloud</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87831"><a href="https://www.kaspersky.com/small-to-medium-business-security/collaboration?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Collaboration</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87832"><a href="https://www.kaspersky.com/small-to-medium-business-security/systems-management?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Vulnerability and Patch Management</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87833"><a href="https://www.kaspersky.com/small-to-medium-business-security/storage?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Storage</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87834"><a href="https://www.kaspersky.com/small-to-medium-business-security/targeted-solutions?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">View More</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87835"><a href="https://www.kaspersky.com/small-to-medium-business-security/services?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Services</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87836"><a href="https://www.kaspersky.com/small-to-medium-business-security/downloads?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Downloads</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87837"><a href="https://support.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______#s_tab3">Support</a>
<li class="parent" data-parent="Resource Center" data-icon="top-item no-icon"><a rel="Resource Center" href="https://www.kaspersky.com/small-to-medium-business-security/resources?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><span>Resource Center</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87839"><a href="https://www.kaspersky.com/small-to-medium-business-security/resources/insights?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Insights</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87840"><a href="https://www.kaspersky.com/small-to-medium-business-security/resources/products?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Products &#038; Solutions</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87841"><a href="https://www.kaspersky.com/small-to-medium-business-security/resources/customers?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Customer Stories</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87842"><a href="https://www.kaspersky.com/small-to-medium-business-security/resources/industry-awards-and-recognition?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Awards &#038; Recognition</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87843"><a href="https://www.kaspersky.com/small-to-medium-business-security/resources/technology?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Technology</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87976"><a href="https://www.kaspersky.com/gdpr?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">GDPR</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87844"><a href="https://companyaccount.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">CompanyAccount</a>
</ul>

<li class="parent" data-parent="SOLUTIONS FOR ENTERPRISE" data-icon="font-icons icon-enterprise top-item"><a title="(1000+ employees)" rel="SOLUTIONS FOR ENTERPRISE" href="#"><i class="font-icons icon-enterprise top-item"></i><span>Enterprise</span><small>(1000+ employees)</small></a>
<ul class="submenu">
<li class="parent" data-parent="Solutions" data-icon="top-item no-icon"><a rel="Solutions" href="https://www.kaspersky.com/enterprise-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><span>Solutions</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87846"><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Endpoint Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87847"><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Hybrid Cloud Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87849"><a href="https://www.kaspersky.com/enterprise-security/embedded-security-internet-of-things?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Internet of Things &#038; Embedded Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87850"><a href="https://www.kaspersky.com/enterprise-security/threat-management-defense-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Threat Management and Defense</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87848"><a href="https://www.kaspersky.com/enterprise-security/industrial-solution?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Industrial Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87852"><a href="https://www.kaspersky.com/enterprise-security/fraud-prevention?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Fraud Prevention</a>
	</ul>

<li class="parent" data-parent="Industries" data-icon="top-item no-icon"><a rel="Industries" href="#"><span>Industries</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87862"><a href="https://www.kaspersky.com/enterprise-security/national-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">National Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87863"><a href="https://www.kaspersky.com/enterprise-security/industrial?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Industrial Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87853"><a href="https://www.kaspersky.com/enterprise-security/finance?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Finance Services Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87788"><a href="https://www.kaspersky.com/enterprise-security/healthcare?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Healthcare Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87861"><a href="https://www.kaspersky.com/enterprise-security/transportation-cybersecurity-it-infrastructure?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Transportation Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87938"><a href="https://www.kaspersky.com/enterprise-security/retail-cybersecurity?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Retail Cybersecurity</a>
<li class="title"><span>Other industries</span>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87772"><a href="https://www.kaspersky.com/enterprise-security/telecom?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Telecom Cybersecurity</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87939"><a href="https://www.kaspersky.com/enterprise-security/industries?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">View all</a>
	</ul>

<li class="parent" data-parent="Products" data-icon="top-item no-icon"><a rel="Products" href="#"><span>Products</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87940"><a href="https://www.kaspersky.com/enterprise-security/endpoint?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87941"><a href="https://www.kaspersky.com/enterprise-security/endpoint-detection-response-edr?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Endpoint Detection and Response</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87942"><a href="https://www.kaspersky.com/enterprise-security/cloud-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Hybrid Cloud Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87943"><a href="https://www.kaspersky.com/enterprise-security/anti-targeted-attack-platform?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Anti Targeted Attack Platform</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87944"><a href="https://www.kaspersky.com/enterprise-security/private-security-network?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Private Security Network</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87945"><a href="https://www.kaspersky.com/enterprise-security/embedded-systems?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Embedded Systems Security</a>
<li class="title"><span>Other products</span>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87946"><a href="https://www.kaspersky.com/enterprise-security/mail-server-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security for Mail Server</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87947"><a href="https://www.kaspersky.com/enterprise-security/ddos-protection?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky DDoS Protection</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87948"><a href="https://www.kaspersky.com/enterprise-security/mobile?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Mobile Security</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87949"><a href="https://www.kaspersky.com/enterprise-security/storage-security?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security for Storage</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87950"><a href="https://www.kaspersky.com/enterprise-security/products?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">View all</a>
	</ul>

<li class="parent" data-parent="Services" data-icon="top-item no-icon"><a rel="Services" href="#"><span>Services</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87870"><a href="https://www.kaspersky.com/enterprise-security/cybersecurity-services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Cybersecurity Services</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87869"><a href="https://www.kaspersky.com/enterprise-security/security-awareness?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Security Awareness</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87872"><a href="https://www.kaspersky.com/enterprise-security/premium-support?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Premium Support</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87951"><a href="https://www.kaspersky.com/enterprise-security/threat-intelligence?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Threat Intelligence</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87952"><a href="https://www.kaspersky.com/enterprise-security/targeted-attack-discovery?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Targeted Attack Discovery</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87953"><a href="https://www.kaspersky.com/enterprise-security/incident-response?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______"><small class="green-top">Kaspersky</small>Incident Response</a>
<li class="title"><span>Other Services</span>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87955"><a href="https://www.kaspersky.com/enterprise-security/professional-services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Professional Services</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87956"><a href="https://www.kaspersky.com/enterprise-security/security-assessment?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security Assessment</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87957"><a href="https://www.kaspersky.com/enterprise-security/cyber-security-training?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Security Training</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87958"><a href="https://www.kaspersky.com/enterprise-security/cyber-incident-response-communication?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Kaspersky Advanced Cyber Incident Communications</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87959"><a href="https://www.kaspersky.com/enterprise-security/services?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">View all</a>
	</ul>

<li class="parent" data-parent="Resource Center" data-icon="top-item no-icon"><a rel="Resource Center" href="https://www.kaspersky.com/enterprise-security/resources?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______"><span>Resource Center</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87854"><a href="https://www.kaspersky.com/enterprise-security/resources/case-studies?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Case Studies</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87873"><a href="https://www.kaspersky.com/enterprise-security/resources/white-papers?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">White Papers</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87874"><a href="https://www.kaspersky.com/enterprise-security/resources/data-sheets?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Datasheets</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87960"><a href="https://www.kaspersky.com/enterprise-security/wiki-section/home?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Technologies</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87856"><a href="https://www.kaspersky.com/about/contact?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">Contact Us</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87961"><a href="https://www.kaspersky.com/gdpr?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">GDPR</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87857"><a href="https://companyaccount.kaspersky.com/account/login?icid=gl_securelisheader_acq_ona_smm__onl_b2b_securelist_prodmen_______">CompanyAccount</a>
</ul>

<li class="splitter"></li>
<li class="title"><span>Securelist</span>
<li class="parent" data-parent="" data-icon="top-item"><a href="https://securelist.com/threat-categories/"><i class="top-item"></i><span>Threats</span></a>
<ul class="submenu">
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89472"><a href="https://securelist.com/threat-category/financial-threats/">Financial threats</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89467"><a href="https://securelist.com/threat-category/mobile-threats/">Mobile threats</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89471"><a href="https://securelist.com/threat-category/web-threats/">Web threats</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89468"><a href="https://securelist.com/threat-category/secure-environment/">Secure environment (IoT)</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89470"><a href="https://securelist.com/threat-category/vulnerabilities-and-exploits/">Vulnerabilities and exploits</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89466"><a href="https://securelist.com/threat-category/spam-and-phishing/">Spam and Phishing</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89469"><a href="https://securelist.com/threat-category/industrial-threats/">Industrial threats</a>
</ul>

<li class="parent" data-parent="" data-icon="top-item"><a href="https://securelist.com/categories/"><i class="top-item"></i><span>Categories</span></a>
<ul class="submenu">
<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-87880"><a href="https://securelist.com/category/apt-reports/">APT reports</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-87881"><a href="https://securelist.com/category/incidents/">Incidents</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-87886"><a href="https://securelist.com/category/research/">Research</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-89476"><a href="https://securelist.com/category/malware-reports/">Malware reports</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-89479"><a href="https://securelist.com/category/spam-and-phishing-reports/">Spam and phishing reports</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-category current-post-ancestor current-menu-parent current-post-parent menu-item-89477"><a href="https://securelist.com/category/publications/">Publications</a>
<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-87882"><a href="https://securelist.com/category/kaspersky-security-bulletin/">Kaspersky Security Bulletin</a>
</ul>

<li class="menu-item menu-item-type-post_type menu-item-object-page current_page_parent menu-item-101953"><a href="https://securelist.com/all/">Archive</a>
<li class="menu-item menu-item-type-post_type menu-item-object-page menu-item-87899"><a href="https://securelist.com/tags/">All Tags</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-101954"><a href="https://apt.securelist.com/">APT Logbook</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-101955"><a href="https://securelist.com/webinars/">Webinars</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-102687"><a href="https://statistics.securelist.com/">Statistics</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87901"><a target="_blank" href="https://encyclopedia.kaspersky.com/">Encyclopedia</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87902"><a target="_blank" href="https://threats.kaspersky.com/">Threats descriptions</a>
<li class="menu-item menu-item-type-post_type menu-item-object-page menu-item-101952"><a href="https://securelist.com/ksb-2020/">KSB 2020</a>
<li class="splitter"></li>
<li class="parent" data-parent="" data-icon="top-item"><a href="#"><i class="top-item"></i><span>Partners</span></a>
<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87769"><a href="https://www.kaspersky.com/partners?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Partners</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87768"><a href="https://www.kasperskypartners.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Find a Partner</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87767"><a href="https://www.kaspersky.com/partners/affiliate?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Affiliate</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87766"><a href="https://www.kaspersky.com/partners/technology?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Technology</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87789"><a href="https://www.kaspersky.com/partners/whitelist-program?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Whitelist Program</a>
</ul>

<li class="parent" data-parent="" data-icon="top-item"><a href="#"><i class="top-item"></i><span>About Us</span></a>
<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87791"><a href="https://www.kaspersky.com/about?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">About Us</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87792"><a href="https://www.kaspersky.com/about/company?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Company</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87793"><a href="https://www.kaspersky.com/about/team?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Team</a>
<li class="parent" data-parent="Transparency" data-icon="top-item no-icon"><a rel="Transparency" href="#"><span>Transparency</span></a>
	<ul class="submenu">
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87969"><a href="https://www.kaspersky.com/about/transparency?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Transparency Center</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87970"><a href="https://www.kaspersky.com/about/policy-blog?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Policy Blog</a>
	</ul>

<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87971"><a href="https://www.kaspersky.com/about/press-releases?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Corporate News</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87796"><a href="https://press.kaspersky.com/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Press Center</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87797"><a href="https://www.kaspersky.com/about/careers?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Careers</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87794"><a href="https://www.kaspersky.com/incubator?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Incubator</a>
<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-87798"><a href="https://www.kaspersky.com/about/sponsorships/?icid=gl_securelisheader_acq_ona_smm__onl_b2b__prodmen_______">Sponsorships</a>
</ul>

	</ul>
	<div class="background-overlay"></div>
</div>

<div class="c-page">
	<section class="c-block c-block--bg-image c-page-header js-sticky-header" style="background-image: url(https://securelist.com/wp-content/themes/securelist2020/assets/images/content/bg-gradient-01.jpg);">
		<div class="o-container-fluid">
			<div class="c-page-header__wrapper u-mt-spacer-base-">
				<div class="o-row o-row--small-gutters">
					<div class="o-col-3@md u-mt-spacer-base-">
						<a href="#" class="c-page-nav-toggle js-main-menu-toggle">
							<span class="c-page-nav-toggle__icon">
								<span></span>
								<span></span>
								<span></span>
							</span>
							<span class="c-page-nav-toggle__text">Content menu</span>
							<span class="c-page-nav-toggle__text c-page-nav-toggle__text--active">Close</span>
													</a>
					</div>
					<div class="o-col-6@md">
						<form class="c-page-search__form js-main-search-popup js-wizardinfosys_autosearch_form" full_search_url="https://securelist.com/?s=%q%" action="https://securelist.com/" method="get">
	<div class="c-form-element c-form-element--style-fill">
		<div class="c-form-element__field wp_autosearch_form_wrapper">
			<input name="s" class="c-form-element__text wp_autosearch_input ac_input" type="text" value="" placeholder="Search..." autocomplete="off">
		</div>
	</div>
	<button class="c-button c-button--icon wp_autosearch_submit"><svg class="o-icon o-svg-icon o-svg-large"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-search"></use></svg></button>
</form>
					</div>
					<div class="o-col-3@md c-page-header__utilities">
						<a href="#modal-newsletter" class="c-button c-subscribe-modal-toggle js-modal-open"><svg class="o-icon o-svg-icon o-svg-large"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-envelope"></use></svg><span>Subscribe</span></a>
						<div class="c-page-header__dropdown-wrapper">
															<button class="c-button c-button--icon c-user-button js-kaspersky-sso-login"><svg class="o-icon o-svg-icon o-svg-large"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-user"></use></svg></button>
													</div>
					</div>
				</div>
			</div>
		</div>

		<nav class="c-page-nav c-color--invert">
			<div class="o-container-fluid">
				<div class="o-row o-row--small-gutters">
					<div class="o-col-3@md c-page-nav__info">
						<div class="c-site-logo__group">
							<a href="https://securelist.com/" class="c-site-logo c-site-logo--basic c-site-logo--sm"></a>
							<span class="c-site-tagline">by Kaspersky</span>
						</div>
						<a href="#" class="c-theme-switcher js-theme-switcher"><i class="font-icons icon-moon"></i> Dark mode<span class="u-hidden u-inline--dark"> off</span></a>
					</div>
					<div class="o-col-9@md">
						<div class="c-page-menu">
							<div class="o-row c-page-menu__dividers">
								<div class="o-col-4@md"><div class="c-accordion js-accordion c-accordion--reset@md"><p id="menu-item-226" class="menu-item-threats section-title accordion menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-226 c-page-menu__title u-hidden u-block@md"><a href="https://securelist.com/threat-categories/">Threats</a></p><div class="c-accordion-toggle js-accordion-toggle"><p>Threats</p></div><div class="c-accordion-container js-accordion-container">
<ul class="sub-menu">
	<li id="menu-item-99839" class="menu-item menu-item-type-taxonomy menu-item-object-threat-category current-post-ancestor current-menu-parent current-post-parent menu-item-99839"><a href="https://securelist.com/threat-category/apt-targeted-attacks/">APT (Targeted attacks)</a></li>
	<li id="menu-item-89457" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-89457"><a href="https://securelist.com/threat-category/secure-environment/">Secure environment (IoT)</a></li>
	<li id="menu-item-63231" class="topic-item vulnerabilities menu-item menu-item-type-custom menu-item-object-custom menu-item-63231"><a href="https://securelist.com/threat-category/mobile-threats/">Mobile threats</a></li>
	<li id="menu-item-63229" class="topic-item detected menu-item menu-item-type-custom menu-item-object-custom menu-item-63229"><a href="https://securelist.com/threat-category/financial-threats/">Financial threats</a></li>
	<li id="menu-item-89458" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-89458"><a href="https://securelist.com/threat-category/spam-and-phishing/">Spam and phishing</a></li>
	<li id="menu-item-99840" class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-99840"><a href="https://securelist.com/threat-category/industrial-threats/">Industrial threats</a></li>
	<li id="menu-item-89465" class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89465"><a href="https://securelist.com/threat-category/web-threats/">Web threats</a></li>
	<li id="menu-item-89459" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-89459"><a href="https://securelist.com/threat-category/vulnerabilities-and-exploits/">Vulnerabilities and exploits</a></li>
</ul>
</li>
</li></ul></div></div></div><div class="o-col-4@md"><div class="c-accordion js-accordion c-accordion--reset@md"><p id="menu-item-230" class="menu-item-categories section-title accordion menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-230 c-page-menu__title u-hidden u-block@md"><a href="https://securelist.com/categories/">Categories</a></p><div class="c-accordion-toggle js-accordion-toggle"><p>Categories</p></div><div class="c-accordion-container js-accordion-container">
<ul class="sub-menu">
	<li id="menu-item-84158" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84158"><a href="https://securelist.com/category/apt-reports/">APT reports</a></li>
	<li id="menu-item-99841" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-99841"><a href="https://securelist.com/category/malware-descriptions/">Malware descriptions</a></li>
	<li id="menu-item-84160" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84160"><a href="https://securelist.com/category/kaspersky-security-bulletin/">Security Bulletin</a></li>
	<li id="menu-item-84161" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84161"><a href="https://securelist.com/category/malware-reports/">Malware reports</a></li>
	<li id="menu-item-89460" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-89460"><a href="https://securelist.com/category/spam-and-phishing-reports/">Spam and phishing reports</a></li>
	<li id="menu-item-99842" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-99842"><a href="https://securelist.com/category/security-technologies/">Security technologies</a></li>
	<li id="menu-item-84165" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84165"><a href="https://securelist.com/category/research/">Research</a></li>
	<li id="menu-item-84164" class="menu-item menu-item-type-taxonomy menu-item-object-category current-post-ancestor current-menu-parent current-post-parent menu-item-84164"><a href="https://securelist.com/category/publications/">Publications</a></li>
</ul>
</li>
</li></ul></div></div></div><div class="o-col-4@md"><p id="menu-item-277" class="menu-item-tags section-title after-accordion menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-277 c-page-menu__title u-hidden u-block@md"><a>Other sections</a></p>
<ul class="sub-menu">
	<li id="menu-item-100526" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-100526"><a href="https://securelist.com/all/">Archive</a></li>
	<li id="menu-item-57837" class="show-all-tags menu-item menu-item-type-post_type menu-item-object-page menu-item-57837"><a href="https://securelist.com/tags/">All tags</a></li>
	<li id="menu-item-101956" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-101956"><a href="https://securelist.com/webinars/">Webinars</a></li>
	<li id="menu-item-101126" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-101126"><a target="_blank" rel="noopener noreferrer" href="https://apt.securelist.com/">APT Logbook</a></li>
	<li id="menu-item-241" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-241"><a target="_blank" rel="noopener noreferrer" href="https://statistics.securelist.com/">Statistics</a></li>
	<li id="menu-item-86643" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-86643"><a target="_blank" rel="noopener noreferrer" href="https://encyclopedia.kaspersky.com/">Encyclopedia</a></li>
	<li id="menu-item-58141" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-58141"><a target="_blank" rel="noopener noreferrer" href="https://threats.kaspersky.com/">Threats descriptions</a></li>
	<li id="menu-item-104901" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-104901"><a href="https://securelist.com/ksb-2021/">KSB 2021</a></li>
</ul>
</li>
</div>							</div>
						</div>
					</div>
				</div>
			</div>
		</nav>
	</section>
			<section class="c-block c-block--spacing-t@md c-block--spacing-b-small@md c-block--divider-internal" style="z-index:10">
				<div class="o-container-fluid">
					<article class="c-article">
						<header class="c-article__header">
							<figure class="c-article__figure u-hidden@md">
								<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />							</figure>
														<p class="c-article__headline u-hidden@md">
								<a href="https://securelist.com/category/publications/" class="c-tag c-tag--primary">Publications</a>
							</p>
														<h1 class="c-article__title">An overview of targeted attacks and APTs on Linux</h1>							<div class="c-article__info">
																<p class="c-article__headline u-hidden u-block@md">
									<a href="https://securelist.com/category/publications/" class="c-tag c-tag--primary">Publications</a>
								</p>
																<p class="u-uppercase"><time datetime="2020-09-10T10:00:39+00:00">10 Sep 2020</time></p>
								<p class="c-article__reading u-ml-auto@md">
									<svg class="o-icon o-svg-icon"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-hourglass"></use></svg> <span class="js-reading-time"></span> minute read								</p>
							</div>
						</header>

						<div class="c-article__wrapper">

							<div class="c-article__main">

								
								<div class="o-row c-article__container">
									<div class="o-col c-article__content js-article-body">
										<div class="js-reading-wrapper">
											<figure class="c-article__figure u-hidden u-block@md">
												<img width="1000" height="600" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code-1000x600.jpg" class="attachment-securelist-2020-thumbnail-large size-securelist-2020-thumbnail-large wp-post-image" alt="" loading="lazy" />											</figure>

											<div class="c-article__authors u-hidden u-block@md">
												<p class="c-block__title">Authors</p>
												<ul class="c-list-authors">
																<li>
			<a href="https://securelist.com/author/great/">
													<img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/avatar-default/avatar_default_3.png">
										<span>GReAT</span></a>
		</li>
														</ul>
											</div>

											
											<div class="js-reading-content">
												<div class="c-wysiwyg">
													<p>Perhaps unsurprisingly, a lot has been written about targeted attacks on Windows systems. Windows is, due to its popularity, the platform for which we discover most APT attack tools. At the same time, there&#8217;s a widely held opinion that Linux is a secure-by-default operating system that isn&#8217;t susceptible to malicious code. It&#8217;s certainly true that Linux hasn&#8217;t faced the deluge of viruses, worms and Trojans faced by those running Windows systems over the years. However, there is certainly malware for Linux – including PHP backdoors, rootkits and exploit code. Moreover, numbers can be misleading. The strategic importance of servers running Linux makes them an attractive target for attackers of all kinds. If an attacker is able to compromise a server running Linux, they not only gain access to data stored on the server but can also target endpoints connected to it running Windows or macOS – for example, through a drive-by download. Furthermore, Linux computers are more likely to be left unprotected, so that such a compromise might well go unnoticed. When the<a href="https://www.kaspersky.com/blog/how-a-linux-bug-may-affect-windows-based-infrastructure/15017/"> Heartbleed and Shellshock vulnerabilities</a> were first reported in 2014, two major concerns were that compromised Linux servers could become an attacker&#8217;s gateway into a corporate network and could give an attacker access to sensitive corporate data.</p>
<p>The Global Research and Analysis Team (GReAT) at Kaspersky publishes regular summaries of advanced persistent threat (APT) activity, based on the threat intelligence research discussed in greater detail in our private APT reports. In this report, we focus on the targeting of Linux resources by APT threat actors.</p>
<p>Readers who would like to learn more about our intelligence reports or request more information on a specific report are encouraged to contact intelreports@kaspersky.com.</p>
<h2 id="barium">Barium</h2>
<p>We first wrote about the <a href="https://securelist.com/winnti-more-than-just-a-game/37029/">Winnti APT group (aka APT41 or Barium) in 2013</a>, when they were targeting mostly gaming companies for direct financial profit. Meanwhile, they grew their operations, developed tons of new tools and went for much more complex targets. MESSAGETAP is Linux malware used by this group to selectively intercept SMS messages from the infrastructure of telecoms operators. According to FireEye, the group<a href="https://www.fireeye.com/blog/threat-research/2019/10/messagetap-who-is-reading-your-text-messages.html"> deployed this malware on SMS gateway systems as part of its operations to infiltrate ISPs and telecoms companies in order to build a surveillance grid</a>.</p>
<p>Recently, we discovered another suspected Barium/APT41 tool, written in the programming language Go (also known as Golang) that implements a dynamic, C2-controlled packet corruption/network attack tool for Linux machines. Although it&#8217;s not 100% clear if this is a tool developed for system administration tasks or if it is also part of the APT41 toolset, the fact that the functionality it offers can also be achieved through other system management tools suggests that its purpose may not be legitimate. Also, its name on disk is rather generic and is unrelated to its functionality, again suggesting that it is potentially a covert tool used for carrying out certain types of destructive attacks. More details about this tool can be found in our private report &#8220;Suspected Barium network control tool in GO for Linux&#8221;.</p>
<h2 id="cloud-snooper">Cloud Snooper</h2>
<p>In February 2020, Sophos published a report describing a set of malicious tools it attributes to a previously unknown threat actor called <a href="https://www.sophos.com/en-us/medialibrary/PDFs/technical-papers/sophoslabs-cloud-snooper-report.pdf">Cloud Snooper</a>. The centerpiece is a server-oriented Linux kernel rootkit that hooks netfilter traffic control functions in order to enable firewall-traversing covert C2 (command-and-control) communications. We analyzed and described the rootkit&#8217;s userland companion backdoor, dubbed &#8216;Snoopy&#8217;, and were able to design detection and scanning methods to identify the rootkit at scale. We also discovered more samples, as well as targeted servers in Asia. We believe that this evolved toolset might have been in development since at least 2016.</p>
<h2 id="equation">Equation</h2>
<p><a href="https://securelist.com/?s=equation">We uncovered the Equation group in 2015</a>. This is a highly sophisticated threat actor that has been engaged in multiple CNE (computer network exploitation) operations dating back to 2001, and perhaps as early as 1996. For many years this threat actor interacted or worked together with other powerful APT groups, for projects such as Stuxnet and Flame. The group has a powerful arsenal of implants. Among those we found were: &#8216;EQUATIONLASER&#8217;, &#8216;EQUATIONDRUG&#8217;, &#8216;DOUBLEFANTASY&#8217;, &#8216;TRIPLEFANTASY&#8217;, &#8216;FANNY&#8217; and &#8216;GRAYFISH&#8217;. The innovations of the Equation group aren&#8217;t limited to the Windows platform. The group&#8217;s POSIX-compliant codebase allows for parallel developments on other platforms. In 2015, we came by the early-stage DOUBLEFANTASY malware for Linux. This implant collects system information and credentials and provides generic access to an infected computer. Given the role this module plays in the infection lifecycle, it would suggest the presence of analogous later-stage, more sophisticated implants, although we weren&#8217;t able to find any.</p>
<p><a href="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09130857/sl_overview_of_atps_02.png" class="magnificImage"><img loading="lazy" class="aligncenter size-full wp-image-98444" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09130857/sl_overview_of_atps_02.png" alt="" width="807" height="786" /></a></p>
<h2 id="hackingteam">HackingTeam</h2>
<p><a href="https://securelist.com/spyware-hackingteam/37064/">HackingTeam </a>was an Italian information technology company that developed and sold intrusion and so called &#8220;legal surveillance software&#8221; to governments, law enforcement agencies and businesses around the world. Unfortunately for them, they were hacked and suffered a data breach in 2015, at the hands of the activist known as Phineas Phisher. The subsequent leak of 400GB of stolen company data, including source code and customer information, allowed these tools to be acquired, adapted and used by threat actors around the world, such as DancingSalome (aka Callisto). The leaked tools included a zero-day exploit for Adobe Flash (CVE-2015-5119) as well as sophisticated platforms capable of providing remote access, keylogging, general information recording and exfiltration, and perhaps most notably, the ability to retrieve Skype audio and video frames directly from memory, bypassing stream encryption. The RCS (Remote Control System) malware (aka Galileo, Da Vinci, Korablin, Morcut and Crisis) includes multiple components, including desktop agents for Windows, macOS and perhaps unsurprisingly&#8230; Linux.</p>
<h2 id="lazarus">Lazarus</h2>
<p>In late 2018, we discovered a previously unknown malicious framework that we named <a href="https://securelist.com/mata-multi-platform-targeted-malware-framework/97746/">MATA</a> internally. This framework was used to target commercial companies in Korea, India, Germany and Poland. While we weren&#8217;t able to find code overlaps with any other known actor, the Kaspersky Threat Attribution engine showed code similarities with Manuscrypt, complex malware used by Lazarus (aka Hidden Cobra). This framework, as with earlier malware developed by Lazarus, included a Windows backdoor. However, we also found a Linux variant that we believe was designed for networking devices.</p>
<p>In June 2020, we analyzed new macOS samples linked to Lazarus <a href="https://securelist.com/operation-applejeus-sequel/95596/">Operation </a><a href="https://securelist.com/operation-applejeus-sequel/95596/">AppleJeus</a> and TangoDaiwbo campaigns, used in financial and espionage attacks. The samples had been uploaded to VirusTotal. The uploaded files also included a Linux malware variant that included similar functionality to the macOS TangoDaiwbo malware. These samples confirm a development that we had highlighted two years earlier – that the group was actively developing non-Windows malware.</p>
<h2 id="sofacy">Sofacy</h2>
<p><a href="https://securelist.com/sofacy-apt-hits-high-profile-targets-with-updated-toolset/72924/">Sofacy</a> (aka APT28, Fancy Bear, STRONTIUM, Sednit and Tsar Team) is a highly active and prolific APT threat actor. From its high-volume zero-day deployment to its innovative, broad malware set, Sofacy is one of the top groups that we monitor. Among the tools in the group&#8217;s arsenal is SPLM (also known as CHOPSTICK and XAgent), a second-stage tool used selectively against targets around the world. Over the years, Sofacy has developed modules for several platforms, including, in 2016, modules for Linux, detected as &#8216;Fysbis&#8217;. The consistent artefacts seen over the years and across Windows, macOS, iOS and Linux suggests that the same developers, or a small core team, is modifying and maintaining the code.</p>
<h2 id="the-dukes">The Dukes</h2>
<p>The <a href="https://securelist.com/the-miniduke-mystery-pdf-0-day-government-spy-assembler-0x29a-micro-backdoor/31112/">Dukes is a sophisticated threat actor that was first documented by us in 2013</a>, but whose tools have been used in attacks dating back to 2008. The group is responsible for attacks against targets in Chechnya, Ukraine, Georgia, as well as western governments and NGOs, NATO and individuals – the group is thought to be behind the hack of the Democratic National Congress in 2016. The Dukes&#8217; toolset includes a comprehensive set of malware implementing similar functionality but coded in several different programming languages. The group&#8217;s malware and campaigns include PinchDuke, GeminiDuke, CosmicDuke, MiniDuke, CozyDuke, OnionDuke, SeaDuke, HammerDuke and CloudDuke. At least one of these, SeaDuke, includes a Linux variant.</p>
<h2 id="the-lamberts">The Lamberts</h2>
<p>The Lamberts is a highly sophisticated threat actor group which is known to possess a huge malware arsenal, including passive, network-driven backdoors, several generations of modular backdoors, harvesting tools and wipers for carrying out destructive attacks. We created a color scheme to distinguish the various tools and implants used against different victims around the world.</p>
<p><a href="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131046/sl_overview_of_atps_03.png" class="magnificImage"><img loading="lazy" class="aligncenter size-full wp-image-98445" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131046/sl_overview_of_atps_03.png" alt="" width="1024" height="103" /></a></p>
<p style="text-align: center"><strong><em>Lamberts discovery timeline</em></strong></p>
<p>In 2017, we published an<a href="https://securelist.com/unraveling-the-lamberts-toolkit/77990/"> overview of the Lamberts family</a>; and further updates (GoldLambert, SilverLambert, RedLambert, BrownLambert) are available to customers of our<a href="https://www.kaspersky.com/enterprise-security/apt-intelligence-reporting"> threat intelligence reports</a>. The focus of the various Lamberts variants is definitely Windows. Nevertheless, signatures that we created for Green Lambert for Windows also triggered on a macOS variant of Green Lambert that was functionally similar to the Windows version. In addition, we also identified samples of the SilverLambert backdoor compiled for both Windows and Linux.</p>
<h2 id="tsunami-backdoor">Tsunami backdoor</h2>
<p>Tsunami (aka Kaiten) is a UNIX backdoor used by multiple threat actors since it was first seen in the wild in 2002. The source code was made public some years ago; and there are now more than 70 variants. The source code compiles smoothly on a wide range of embedded devices; and there are versions for ARM, MIPS, Sparc and Cisco 4500/PowerPC. Tsunami remains a threat for Linux-based routers, DVRs and the increasing number of IoT (internet of things) devices. In 2016, a variant of Tsunami was used in the<a href="https://securelist.com/beware-of-backdoored-linux-mint-isos/73893/"> Linux Mint hack</a>, where an unknown threat actor compromised the Linux Mint distribution ISOs to include a backdoor. We also observed the use of the Tsunami backdoor to surgically target a number of cryptocurrency users on Linux.</p>
<h2 id="turla">Turla</h2>
<p>Turla (aka Uroboros, Venomous Bear and Waterbug) is a prolific Russian-speaking group known for its covert exfiltration tactics such as the use of<a href="https://securelist.com/satellite-turla-apt-command-and-control-in-the-sky/72081/"> hijacked satellite connections</a>,<a href="https://securelist.com/the-epic-turla-operation/65545/"> water-holing of government websites</a>, covert channel backdoors, rootkits and<a href="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/07184135/Bartholomew-GuerreroSaade-VB2016.pdf"> deception tactics</a>. This threat actor, like other APT groups, has made significant changes to its toolset over the years. Until 2014, every malware sample used by Turla that we had seen was designed for 32- or 64-bit versions of Windows.</p>
<p><a href="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131207/sl_overview_of_atps_04.jpg" class="magnificImage"><img loading="lazy" class="aligncenter size-full wp-image-98446" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131207/sl_overview_of_atps_04.jpg" alt="" width="1600" height="1200" /></a></p>
<p>Then in December 2014, we published our report on <a href="https://securelist.com/the-penquin-turla-2/67962/">Penguin Turla</a>, a Linux component in the Turla arsenal. This is a stealth backdoor that didn&#8217;t require elevated privileges, i.e. administrator or root rights. Even if someone with limited access to the system launches it, the backdoor can intercept incoming packets and run commands from the attackers on the system while maintaining stealth. It is also rather hard to uncover, so if it&#8217;s installed on a compromised server, it could sit there unnoticed for a long time. Further research on Penguin Turla revealed that<a href="https://securelist.com/penquins-moonlit-maze/77883/"> its roots stretch back to the Moonlight Maze operation in the mid-1990s</a>. In May this year, researchers from Leonardo published a report about <a href="https://www.leonardocompany.com/documents/20142/10868623/Malware+Technical+Insight+_Turla+%E2%80%9CPenquin_x64%E2%80%9D.pdf/541d279e-a827-38b4-99e8-3c23553cd66a">Penguin_x64</a>, a previously undocumented variant of the Penguin Turla Linux backdoor. Based on this report, we generated network probes that detect Penquin_x64 infected hosts at scale, allowing us to discover a couple dozen infected servers in Europe and the US, as recent as July 2020. We believe that, following public documentation of GNU/Linux tools, Turla may have been repurposing Penguin to conduct operations other than traditional intelligence gathering.</p>
<h2 id="two-sail-junk">Two-Sail Junk</h2>
<p>In January 2020, a watering hole was discovered that utilized a full remote iOS exploit chain to deploy a feature-rich implant named LightSpy. The site appears to have been designed to target users in Hong Kong, based on the content of the landing page. For the time being, until we can link the campaign to a known group, we have given the name Two-Sail Junk to the threat actor behind this implant. However, while<a href="https://securelist.com/ios-exploit-chain-deploys-lightspy-malware/96407/"> our public report</a> focused on the iOS implant, the project is broader than previously thought, supporting an Android implant, and probably supporting implants for Windows, Linux and MacOS.</p>
<h2 id="wellmess">WellMess</h2>
<p>In March 2020, we began to actively track new C2 servers associated with malware commonly referred to as WellMess, indicating a potentially massive new wave of activity. This malware was<a href="https://blogs.jpcert.or.jp/en/2018/07/malware-wellmes-9b78.html"> initially documented by JPCERT in July 2018</a> and has been sporadically active since then. There were rumors that hint at a possible connection with CozyDuke (aka APT29), along with speculation that the current activity was focused on the healthcare industry, although we were unable to verify either claim. WellMess is a Remote Access Trojan, written in .NET and Go (Golang), cross-compiled to be compatible with both Windows and Linux.</p>
<h2 id="wildneutron">WildNeutron</h2>
<p>We <a href="https://securelist.com/wild-neutron-economic-espionage-threat-actor-returns-with-new-tricks/71275/">first published about WildNeutron in 2015</a>, together with our colleagues from Symantec, who call it Morpho or Butterfly. This group, which rose to prominence with their 2012-2013 attacks on Twitter, Microsoft, Apple and Facebook, are one of the most elusive, mysterious and dynamic we have seen. Their arsenal included many interesting and innovative tools, such as LSA backdoors or IIS plugins, coupled with both zero-day-based and physical deployment. Unsurprisingly, in several known attacks WildNeutron used a custom Linux backdoor as well.</p>
<h2 id="zebrocy">Zebrocy</h2>
<p>Zebrocy is custom malware that we have been tracking since 2015. The group using this malware started as a subset of Sofacy, but also has similarities and<a href="https://securelist.com/zebrocys-multilanguage-malware-salad/90680/"> overlaps with other APT groups</a>. The group has developed malware in several languages, including Delphi, AutoIT, .NET, C#, PowerShell and Go. Zebrocy has mainly targeted Central Asian government-related organizations, both in-country and in remote locations. The group makes extensive use of spear phishing to compromise Windows endpoints. However, its backdoors are configured to communicate directly with IP-assigned web server hosts over port 80; and<a href="https://securelist.com/a-zebrocy-go-downloader/89419/"> the group seems to favor Linux for this part of its infrastructure</a> – specifically, Apache 2.4.10 running on Debian Linux.</p>
<p><a href="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131351/sl_overview_of_atps_05.png" class="magnificImage"><img loading="lazy" class="aligncenter size-full wp-image-98447" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131351/sl_overview_of_atps_05.png" alt="" width="1149" height="576" /></a></p>
<h2 id="recommendations-for-protecting-linux-systems">Recommendations for protecting Linux systems</h2>
<p>One of the main reasons that Linux systems go unprotected is a false sense of security from using Linux instead of the far more popular (and more targeted) Windows. Nevertheless, we hope all the aforementioned points are convincing enough for you to start securing your Linux-based machines in a serious way.</p>
<p>The very first recommendation is to <strong>maintain a list of trusted sources</strong> of your software. Think about this in the same way as the recommended approach to Android or iOS apps – only installing applications from official repositories. In the Linux world we enjoy more freedom: for example, even if you are using Ubuntu, you&#8217;re not restricted only to Canonical&#8217;s own repository. Any .DEB file, or even application source code from GitHub, is at your service. But please choose these sources wisely. Don&#8217;t just blindly follow instructions like &#8220;Run this script from our server to install&#8221;; or &#8220;curl https://install-url | sudo bash&#8221; – which is a security nightmare.</p>
<p>Please also be mindful of the <strong>secure way to get applications</strong> from these trusted repositories. Your channels to update the apps have to be encrypted using HTTPS or SSH protocols. Besides your trust in software sources and its delivery channel, it&#8217;s critical for <strong>updates to arrive in a timely fashion</strong>. Most modern Linux flavors are able to do this for you, but a simple cron script would help you to stay more protected and to get all the patches as soon as they are released by developers.</p>
<p>The next thing we would recommend is checking network-related settings. With commands like &#8220;netstat -a&#8221; you could <strong>filter out all unnecessary opened ports</strong> on your host. Please avoid network applications you really don&#8217;t need or don&#8217;t use to minimize your network footprint. Also, it would be strongly recommended to <strong>properly set up the firewall</strong> from your Linux distributive, to filter traffic and store the host&#8217;s network activity. It&#8217;s also a very good idea not to go online directly, but through NAT.</p>
<p>To continue with the network-related security rules, we recommend <strong>protecting your locally stored SSH keys</strong> (used for your network services) using passwords at least. In more &#8220;paranoid&#8221; mode you could even <strong>store the keys on external protected storage</strong>, like tokens from any trusted vendor. On the server side of connections, nowadays it&#8217;s not that hard to <strong>set up multi-factor authentication for SSH sessions</strong>, like the messages to your phone or other mechanisms such as authenticator apps.</p>
<p>So far, our recommendations have covered software sources, application delivery channel, avoiding unnecessary network footprint and protection of encryption keys. One more idea we recommend for monitoring threats you couldn&#8217;t find at the filesystem level is to <strong>keep and analyze the network activity logs</strong>. You could install and use an out-of-band network tap to independently monitor and analyze the network communications of your Linux systems.</p>
<p>As part of your threat model, you need to consider the possibility that, despite all the aforementioned measures, attackers can compromise your protection. Think about the next protection step in terms of an attacker&#8217;s persistence in the system. They will probably make changes to be able to start their Trojan automatically after the system reboots. So, you need to <strong>regularly monitor the main configuration files as well as the integrity of system binaries</strong>, just in case of file viruses. The logs mentioned above for monitoring network communication, is fully applicable here: <strong>the Linux auditing system collects system calls and file access records</strong>. Additional daemons such as &#8220;osquery&#8221; can be used for the same task. . Any suspicious files, URLs, and IP addresses can be checked at <a href="https://opentip.kaspersky.com/">Kaspersky Threat Intelligence Portal</a>.</p>
<p>Physical security of devices is also important. It doesn&#8217;t matter how much attention you pay to network and system level hardening if your laptop ends up in an attacker&#8217;s hands and you haven&#8217;t taken steps to protect it from this attack vector. You should consider <strong>full disk encryption and safe boot mechanisms</strong> for physical security. A more spy-like approach would be to place tamper-evident security tape on your most critical hardware.</p>
<p>Dedicated <a href="https://www.kaspersky.com/enterprise-security/endpoint">solution</a> with Linux security can simplify the protection task: web threat protection detects malicious and phishing websites; network threat protection detects network attacks in incoming traffic; behavior analysis detects malicious activity, while device control allows management of connected devices and access to them.</p>
<p>Our final recommendation relates to Docker. This is not a theoretical threat: infection of containers is a <a href="https://www.zdnet.com/article/new-linux-malware-uses-dogecoin-api-to-find-c-c-server-addresses/?amp=1">very real issue</a>. <strong>Containerization doesn&#8217;t provide security by itself</strong>. Some containers are quite isolated from the host, but not all – <strong>network and file system interfaces exist</strong> in them and in most cases there are bridges between physical and containerized worlds.</p>
<p>Therefore, you can use security solution that allows to add security into development process. <a href="https://www.kaspersky.com/enterprise-security/devops-security">Kaspersky Hybrid Cloud Security</a> includes integration with CI/CD platforms, such as Jenkins, through a script to scan Docker images for malicious elements at different stages.</p>
<p>To prevent supply-chain attacks, On-Access Scanning (OAS) and On-Demand Scanning (ODS) of containers, images, and local and remote repositories can be used. Namespace monitoring, flexible mask-based scan scope control and the ability to scan different layers of containers help to enforce secure development best practices.</p>
<p>We have broken down this list of recommendations into logical sections. Please bear in mind that, besides applying all the measures we have mentioned, you should also audit and check all the generated logs and any other messages regularly. Otherwise you could miss signs of intrusion. A final idea, for security enthusiasts, is to adopt active measures – to provide system penetration testing from time to time.</p>
<h3 id="summary-of-recommendations">Summary of recommendations:</h3>
<ul>
<li>Maintain a list of trusted software sources, avoid using unencrypted update channels.</li>
<li>Do not run binaries and scripts from untrusted sources. A widely advertised way to install programs with commands like &#8220;curl <a href="http://install-url">https://install-url</a> | sudo bash&#8221; is a security nightmare.</li>
<li>Make sure your update procedure is effective. Set up automatic security updates.</li>
<li>Spend time to set up your firewall properly: make sure it logs network activity, block all ports you don&#8217;t use, minimize your network footprint.</li>
<li>Use key-based SSH authentication, protect keys with passwords.</li>
<li>Use 2FA and store sensitive keys on external token devices (e.g. Yubikey).</li>
<li>Use an out-of-band network tap to independently monitor and analyze network communications of your Linux systems.</li>
<li>Maintain system executable file integrity. Review configuration file changes regularly.</li>
<li>Be prepared for insider/physical attacks: use full disk encryption, trusted/safe boot and put tamper-evident security tape on your critical hardware.</li>
<li>Audit the system, check logs for indicators of attacks.</li>
<li>Run penetration tests on your Linux setup.</li>
<li>Use a dedicated security solution for Linux with web and network protection, as well as features for DevOps protection.</li>
</ul>
<p>&nbsp;</p>
												</div>
											</div>
										</div>

										<div class="c-article__footer">
											<div class="c-article__categories">
													<ul class="c-list-tags">
				<li><a href="https://securelist.com/tag/apt/" class="c-link-tag"><span>APT</span></a></li>
					<li><a href="https://securelist.com/tag/cyber-espionage/" class="c-link-tag"><span>Cyber espionage</span></a></li>
					<li><a href="https://securelist.com/tag/linux/" class="c-link-tag"><span>Linux</span></a></li>
					<li><a href="https://securelist.com/tag/targeted-attacks/" class="c-link-tag"><span>Targeted attacks</span></a></li>
					<li><a href="https://securelist.com/tag/vulnerabilities-and-exploits/" class="c-link-tag"><span>Vulnerabilities and exploits</span></a></li>
			</ul>
												</div>
											<div class="c-article__authors u-hidden@md">
												<p class="c-title--extra-small">Authors</p>
												<ul class="c-list-authors">
																<li>
			<a href="https://securelist.com/author/great/">
													<img src="https://securelist.com/wp-content/themes/securelist2020/assets/images/avatar-default/avatar_default_3.png">
										<span>GReAT</span></a>
		</li>
														</ul>
											</div>
										</div>
				<div id="comments" class="entry-comments c-article__comments js-comments-wrapper">
	<p class="c-title--extra-small">An overview of targeted attacks and APTs on Linux</p>		<div id="respond" class="comment-respond">
		<h3 id="reply-title" class="u-hidden"> <small></small></h3><form action="https://securelist.com/wp-comments-post.php" method="post" id="loginform" class="comment-form"><p class="comment-notes"><span id="email-notes">Your email address will not be published.</span> Required fields are marked <span class="required">*</span></p><div class="comment-form-comment"><textarea id="comment" name="comment" style="width:100%" rows="8" aria-required="true" placeholder="Type your comment here"></textarea></div><!-- .comment-form-comment --><p class="comment-form-author"><label for="author">Name <span class="required">*</span></label> <input id="author" name="author" type="text" value="" size="30" maxlength="245" required='required' /></p>
<p class="comment-form-email"><label for="email">Email <span class="required">*</span></label> <input id="email" name="email" type="text" value="" size="30" maxlength="100" aria-describedby="email-notes" required='required' /></p>
<script type="text/javascript">
                document.addEventListener("input", function (event) {
                    if (!event.target.closest("#comment")) return;

                    var captchaContainer = null;
                    captchaContainer = grecaptcha.render("recaptcha-submit-btn-area", {
                        "sitekey" : "6LfQdrAaAAAAAEb_rTrwlbyc8z0Fa9CMjELY_2Ts",
                        "theme" : "standard"
                    });
                });
            </script>

            <script src="https://www.google.com/recaptcha/api.js?hl=en&render=explicit" async defer></script>            <div id="recaptcha-submit-btn-area">&nbsp;</div>
            <noscript>
            <style type='text/css'>#form-submit-save {display:none;}</style>
            <input name="submit" type="submit" id="submit-alt" tabindex="6"
                value="Submit Comment"/>
            </noscript><p class="form-submit"><input name="submit" type="submit" id="commentsubmit" class="submit" value="Comment" /><a rel="nofollow" id="cancel-comment-reply-link" href="/an-overview-of-targeted-attacks-and-apts-on-linux/98440/#respond" style="display:none;">Cancel</a> <input type='hidden' name='comment_post_ID' value='98440' id='comment_post_ID' />
<input type='hidden' name='comment_parent' id='comment_parent' value='0' />
</p><p style="display: none;"><input type="hidden" id="akismet_comment_nonce" name="akismet_comment_nonce" value="ba322c7ae2" /></p><!-- the following input field has been added by the Honeypot Comments plugin to thwart spambots -->
	<input type="hidden" id="JmOmJjprd7wEjddLNP5tuRZFV" name="T4NYnfRc5ZSmrRrA8nZce8ah0" /><input type="hidden" id="ak_js" name="ak_js" value="250"/><textarea name="ak_hp_textarea" cols="45" rows="8" maxlength="100" style="display: none !important;"></textarea></form>	</div><!-- #respond -->
		
</div><!-- .entry-comments -->
											</div>
									<div class="o-col c-article__sidebar c-widgets--distributed u-hidden u-flex@md">
																					<div class="c-widget__wrapper">
		<div class="js-sticky-widget">
					<p><span class="c-tag c-tag--primary">GReAT webinars</span></p>
							<div class="o-row o-row--small-gutters">
				<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
														<article class="c-card c-card--hor-reverse@xs u-items-center">
						<div class="c-card__body">
							<header class="c-card__header">
															<time datetime="2021-05-13T13:00:00+00:00" class="c-card__event-date">13 May 2021, 1:00pm</time>
															<h3 class="c-card__title c-card__title--has-icon"><a href="https://securelist.com/webinars/great-ideas-balalaika-edition/" class="c-card__title-icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></a><a href="https://securelist.com/webinars/great-ideas-balalaika-edition/" class="c-card__link">GReAT Ideas. Balalaika Edition</a></h3>							</header>
							<footer class="c-card__footer">
								<div class="c-card__authors">
									<ul class="c-list-authors c-list-authors--comma">
													<li>
			<a href="https://securelist.com/author/borislarin/">
						<span>Boris Larin</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/denislegezo/">
						<span>Denis Legezo</span></a>
		</li>
											</ul>
								</div>
							</footer>
						</div>
					</article>
														<article class="c-card c-card--hor-reverse@xs u-items-center">
						<div class="c-card__body">
							<header class="c-card__header">
															<time datetime="2021-02-26T12:00:00+00:00" class="c-card__event-date">26 Feb 2021, 12:00pm</time>
															<h3 class="c-card__title c-card__title--has-icon"><a href="https://securelist.com/webinars/great-ideas-green-tea-edition/" class="c-card__title-icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></a><a href="https://securelist.com/webinars/great-ideas-green-tea-edition/" class="c-card__link">GReAT Ideas. Green Tea Edition</a></h3>							</header>
							<footer class="c-card__footer">
								<div class="c-card__authors">
									<ul class="c-list-authors c-list-authors--comma">
													<li>
			<a href="https://securelist.com/author/johnhultquist/">
						<span>John Hultquist</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/brian_bartholomew/">
						<span>Brian Bartholomew</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/suguru/">
						<span>Suguru Ishimaru</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/vitalykamluk/">
						<span>Vitaly Kamluk</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/seongsupark/">
						<span>Seongsu Park</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/yusukeniwa/">
						<span>Yusuke Niwa</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/motohikosato/">
						<span>Motohiko Sato</span></a>
		</li>
											</ul>
								</div>
							</footer>
						</div>
					</article>
														<article class="c-card c-card--hor-reverse@xs u-items-center">
						<div class="c-card__body">
							<header class="c-card__header">
															<time datetime="2020-06-17T13:00:00+00:00" class="c-card__event-date">17 Jun 2020, 1:00pm</time>
															<h3 class="c-card__title c-card__title--has-icon"><a href="https://securelist.com/webinars/great-ideas-powered-by-sas-malware-attribution-and-next-gen-iot-honeypots/" class="c-card__title-icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></a><a href="https://securelist.com/webinars/great-ideas-powered-by-sas-malware-attribution-and-next-gen-iot-honeypots/" class="c-card__link">GReAT Ideas. Powered by SAS: malware attribution and next-gen IoT honeypots</a></h3>							</header>
							<footer class="c-card__footer">
								<div class="c-card__authors">
									<ul class="c-list-authors c-list-authors--comma">
													<li>
			<a href="https://securelist.com/author/marcopreuss/">
						<span>Marco Preuss</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/denislegezo/">
						<span>Denis Legezo</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/costin/">
						<span>Costin Raiu</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/kurtb/">
						<span>Kurt Baumgartner</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/dandemeter/">
						<span>Dan Demeter</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/yaroslavshmelev/">
						<span>Yaroslav Shmelev</span></a>
		</li>
											</ul>
								</div>
							</footer>
						</div>
					</article>
														<article class="c-card c-card--hor-reverse@xs u-items-center">
						<div class="c-card__body">
							<header class="c-card__header">
															<time datetime="2020-08-26T14:00:00+00:00" class="c-card__event-date">26 Aug 2020, 2:00pm</time>
															<h3 class="c-card__title c-card__title--has-icon"><a href="https://securelist.com/webinars/great-ideas-powered-by-sas-threat-actors-advance-on-new-fronts/" class="c-card__title-icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></a><a href="https://securelist.com/webinars/great-ideas-powered-by-sas-threat-actors-advance-on-new-fronts/" class="c-card__link">GReAT Ideas. Powered by SAS: threat actors advance on new fronts</a></h3>							</header>
							<footer class="c-card__footer">
								<div class="c-card__authors">
									<ul class="c-list-authors c-list-authors--comma">
													<li>
			<a href="https://securelist.com/author/ivankwiatkowski/">
						<span>Ivan Kwiatkowski</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/maheryamout/">
						<span>Maher Yamout</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/noushinshabab/">
						<span>Noushin Shabab</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/pierredelcher/">
						<span>Pierre Delcher</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/felixaime/">
						<span>Félix Aime</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/giampaolodedola/">
						<span>Giampaolo Dedola</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/santiago/">
						<span>Santiago Pontiroli</span></a>
		</li>
											</ul>
								</div>
							</footer>
						</div>
					</article>
														<article class="c-card c-card--hor-reverse@xs u-items-center">
						<div class="c-card__body">
							<header class="c-card__header">
															<time datetime="2020-07-22T14:00:00+00:00" class="c-card__event-date">22 Jul 2020, 2:00pm</time>
															<h3 class="c-card__title c-card__title--has-icon"><a href="https://securelist.com/webinars/great-ideas-powered-by-sas-threat-hunting-and-new-techniques/" class="c-card__title-icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></a><a href="https://securelist.com/webinars/great-ideas-powered-by-sas-threat-hunting-and-new-techniques/" class="c-card__link">GReAT Ideas. Powered by SAS: threat hunting and new techniques</a></h3>							</header>
							<footer class="c-card__footer">
								<div class="c-card__authors">
									<ul class="c-list-authors c-list-authors--comma">
													<li>
			<a href="https://securelist.com/author/dimitrybestuzhev/">
						<span>Dmitry Bestuzhev</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/costin/">
						<span>Costin Raiu</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/pierredelcher/">
						<span>Pierre Delcher</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/brian_bartholomew/">
						<span>Brian Bartholomew</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/borislarin/">
						<span>Boris Larin</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/arieljungheit/">
						<span>Ariel Jungheit</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/fabioa/">
						<span>Fabio Assolini</span></a>
		</li>
											</ul>
								</div>
							</footer>
						</div>
					</article>
												</div>
			</div>
				</div>
	</div>
													<div class="c-widget__wrapper">
			<div class="js-sticky-widget">
				<p><span class="c-tag c-tag--primary">From the same authors</span></p>
				<div class="o-row o-row--small-gutters">
							<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/apt-annual-review-2021/105127/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/29150529/ksb-2021_APT-review-year-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/29150529/ksb-2021_APT-review-year-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/apt-annual-review-2021/105127/" class="c-card__link">APT annual review 2021</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/scarcruft-surveilling-north-korean-defectors-and-human-rights-activists/105074/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/27114415/abstract-Fingerprint-Scanning-Technology-800x450.jpeg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/27114415/abstract-Fingerprint-Scanning-Technology-800x450.jpeg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/scarcruft-surveilling-north-korean-defectors-and-human-rights-activists/105074/" class="c-card__link">ScarCruft surveilling North Korean defectors and human rights activists</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/advanced-threat-predictions-for-2022/104870/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/17085725/apt_soc_ksb-2021-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/17085725/apt_soc_ksb-2021-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/advanced-threat-predictions-for-2022/104870/" class="c-card__link">Advanced threat predictions for 2022</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/apt-trends-report-q3-2021/104708/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/04/09094920/abstract-digital-blue-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/04/09094920/abstract-digital-blue-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/apt-trends-report-q3-2021/104708/" class="c-card__link">APT trends report Q3 2021</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/finspy-unseen-findings/104322/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/09/28092657/abstract_spy_eye-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/09/28092657/abstract_spy_eye-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/finspy-unseen-findings/104322/" class="c-card__link">FinSpy: unseen findings</a></h3>		</header>
					</div>
</article>
		</div>
							</div>
			</div>
		</div>
					<div class="c-widget__wrapper">
				<div class="c-widget-subscribe js-sticky-widget">
					<div class="c-block__header">
						<h5 class="c-title--small">Subscribe to our weekly e-mails</h5>
						<p>The hottest research right in your inbox</p>
					</div>
					<div class="c-form--float-labels js-float-labels">
						
                <div class='gf_browser_chrome gform_wrapper gform_wrapper_original_id_11 subscribe-mc_wrapper' id='gform_wrapper_2441496103' ><div id='gf_2441496103' class='gform_anchor' tabindex='-1'></div><form method='post' enctype='multipart/form-data' target='gform_ajax_frame_2441496103' id='gform_2441496103' class='subscribe-mc' action='/an-overview-of-targeted-attacks-and-apts-on-linux/98440/#gf_2441496103'>
                        <div class="gform-content-wrapper"><div class='gform_body'><ul id='gform_fields_2441496103' class='gform_fields top_label form_sublabel_below description_below'><li id='field_2441496103_1'  class='gfield gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible' ><label class='gfield_label' for='input_2441496103_1' ><span class='gfield_required'>*</span></label><div class='ginput_container ginput_container_email'>
                            <input name='input_1' id='input_2441496103_1' type='text' value='' class='medium'   placeholder='Email' aria-required="true" aria-invalid="false" />
                        </div></li><li id='field_2441496103_3'  class='gfield js-kaspersky-gform-recaptcha-placeholder gform_hidden field_sublabel_below field_description_below gfield_visibility_hidden' ><input name='input_3' id='input_2441496103_3' type='hidden' class='gform_hidden'  aria-invalid="false" value='' /></li><li id='field_2441496103_2'  class='gfield input-without-label label-gdpr gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible' ><label class='gfield_label'  ><span class='gfield_required'>*</span></label><div class='ginput_container ginput_container_checkbox'><ul class='gfield_checkbox' id='input_2441496103_2'><li class='gchoice_11_2_1'>
								<input name='input_2.1' type='checkbox'  value='I agree'  id='choice_2441496103_11_2_1'   />
								<label for='choice_2441496103_11_2_1' id='label_2441496103_11_2_1'>I agree to provide my email address to “AO Kaspersky Lab” to receive information about new posts on the site. I understand that I can withdraw this consent at any time via e-mail by clicking the “unsubscribe” link that I find at the bottom of any e-mail sent to me for the purposes mentioned above.</label>
							</li></ul></div></li>
                            </ul></div>
        <div class='gform_footer top_label'> 	<button type="submit" class="gform_button button" id='gform_submit_button_2441496103' value="Sign up">
		<svg class="o-icon o-svg-icon o-svg-large"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-envelope"></use></svg>		<span>Subscribe</span>
	</button>

	 <input type='hidden' name='gform_ajax' value='form_id=11&amp;title=&amp;description=&amp;tabindex=0' />
            <input type='hidden' class='gform_hidden' name='is_submit_11' value='1' />
            <input type='hidden' class='gform_hidden' name='gform_submit' value='11' />
            
            <input type='hidden' class='gform_hidden' name='gform_unique_id' value='' />
            <input type='hidden' class='gform_hidden' name='state_11' value='WyJbXSIsImIwODQwZTA2ZGQ0NzYwODcyOTBkZjNmZDM1NDk2Y2ZkIl0=' />
            <input type='hidden' class='gform_hidden' name='gform_target_page_number_11' id='gform_target_page_number_2441496103_11' value='0' />
            <input type='hidden' class='gform_hidden' name='gform_source_page_number_11' id='gform_source_page_number_2441496103_11' value='1' />
            <input type='hidden' name='gform_random_id' value='2441496103' /><input type='hidden' name='gform_field_values' value='securelist_2020_form_location=sidebar' />
            
        </div>
                        </div></form>
                        </div>
                <iframe style='display:none;width:0px;height:0px;' src='about:blank' name='gform_ajax_frame_2441496103' id='gform_ajax_frame_2441496103'>This iframe contains the logic required to handle Ajax powered Gravity Forms.</iframe>
                <script type='text/javascript'>jQuery(document).ready(function($){gformInitSpinner( 2441496103, 'https://securelist.com/wp-content/themes/securelist2020/assets/images/content/ajax-spinner-red.svg' );jQuery('#gform_ajax_frame_2441496103').on('load',function(){var contents = jQuery(this).contents().find('*').html();var is_postback = contents.indexOf('GF_AJAX_POSTBACK') >= 0;if(!is_postback){return;}var form_content = jQuery(this).contents().find('#gform_wrapper_2441496103');var is_confirmation = jQuery(this).contents().find('#gform_confirmation_wrapper_2441496103').length > 0;var is_redirect = contents.indexOf('gformRedirect(){') >= 0;var is_form = form_content.length > 0 && ! is_redirect && ! is_confirmation;var mt = parseInt(jQuery('html').css('margin-top'), 10) + parseInt(jQuery('body').css('margin-top'), 10) + 100;if(is_form){jQuery('#gform_wrapper_2441496103').html(form_content.html());if(form_content.hasClass('gform_validation_error')){jQuery('#gform_wrapper_2441496103').addClass('gform_validation_error');} else {jQuery('#gform_wrapper_2441496103').removeClass('gform_validation_error');}setTimeout( function() { /* delay the scroll by 50 milliseconds to fix a bug in chrome */ jQuery(document).scrollTop(jQuery('#gform_wrapper_2441496103').offset().top - mt); }, 50 );if(window['gformInitDatepicker']) {gformInitDatepicker();}if(window['gformInitPriceFields']) {gformInitPriceFields();}var current_page = jQuery('#gform_source_page_number_2441496103_11').val();gformInitSpinner( 2441496103, 'https://securelist.com/wp-content/themes/securelist2020/assets/images/content/ajax-spinner-red.svg' );jQuery(document).trigger('gform_page_loaded', [2441496103, current_page]);window['gf_submitting_2441496103'] = false;}else if(!is_redirect){var confirmation_content = jQuery(this).contents().find('.GF_AJAX_POSTBACK').html();if(!confirmation_content){confirmation_content = contents;}setTimeout(function(){jQuery('#gform_wrapper_2441496103').replaceWith(confirmation_content);jQuery(document).scrollTop(jQuery('#gf_2441496103').offset().top - mt);jQuery(document).trigger('gform_confirmation_loaded', [2441496103]);window['gf_submitting_2441496103'] = false;}, 50);}else{jQuery('#gform_2441496103').append(contents);if(window['gformRedirect']) {gformRedirect();}}jQuery(document).trigger('gform_post_render', [2441496103, current_page]);} );} );</script><script type='text/javascript'> jQuery(document).bind('gform_post_render', function(event, formId, currentPage){if(formId == 2441496103) {if(typeof Placeholders != 'undefined'){
                        Placeholders.enable();
                    }} } );jQuery(document).bind('gform_post_conditional_logic', function(event, formId, fields, isInit){} );</script><script type='text/javascript'> jQuery(document).ready(function(){jQuery(document).trigger('gform_post_render', [2441496103, 1]) } ); </script>					</div>
				</div>
			</div>
					<div class="c-widget__wrapper">
			<div class="js-sticky-widget">
				<p><span class="c-tag c-tag--primary">In the same category</span></p>
				<div class="o-row o-row--small-gutters">
							<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/kaspersky-safe-kids-christmas-gift-report-2021/105396/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/22105208/sl-abstract-digital-christmas-gift-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/22105208/sl-abstract-digital-christmas-gift-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/kaspersky-safe-kids-christmas-gift-report-2021/105396/" class="c-card__link">Choosing Christmas gifts for kids: Squid Game and Huggy Wuggy are trending</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/answering-log4shell-related-questions/105402/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/20154513/abstract_questions-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/20154513/abstract_questions-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/answering-log4shell-related-questions/105402/" class="c-card__link">Answering Log4Shell-related questions</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/kaspersky-managed-detection-and-response-interesting-cases/105214/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/15092025/abstract-security-alert-sl-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/15092025/abstract-security-alert-sl-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/kaspersky-managed-detection-and-response-interesting-cases/105214/" class="c-card__link">Kaspersky Managed Detection and Response: interesting cases</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/black-friday-2021/104915/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/22091621/black_friday_abstract-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/22091621/black_friday_abstract-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/black-friday-2021/104915/" class="c-card__link">Black Friday 2021: How to Have a Scam-Free Shopping Day</a></h3>		</header>
					</div>
</article>
		</div>
					<div class="o-col-12 c-card__dividers c-card__dividers--hide-first@xs c-card__dividers--show-last@xs">
			<article class="c-card c-card--hor-reverse@xs u-items-center">
		<a href="https://securelist.com/streaming-related-cyberthreats-report-2021/104833/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/04/01091653/tv_digital_stream_abstract-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/04/01091653/tv_digital_stream_abstract-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/streaming-related-cyberthreats-report-2021/104833/" class="c-card__link">Streaming wars continue — what about cyberthreats?</a></h3>		</header>
					</div>
</article>
		</div>
							</div>
			</div>
		</div>
											</div>
								</div>

							</div>
						</div>

						<div class="c-article__progress rpi-progress-bar">
							<div class="c-article__progress-bar__position rpi-progress-bar__position"></div>
							<div class="rpi-progress-bar__percentage"></div>
						</div>
					</article>
				</div>
			</section>
			<section class="c-block c-block--spacing-t-small c-block--spacing-b-small@md c-block--divider-internal">
	<div class="o-container-fluid">
		<h5 class="c-block__title">Latest Posts</h5>
		<div class="o-row o-row--small-gutters@sm c-card__row c-card__row--fixed-width-down@sm js-slider-posts-mobile">
					<div class="o-col-6@sm o-col-3@md">
			<article class="c-card c-card--standard@xs">
		<a href="https://securelist.com/attack-on-anti-spam-machine-learning-model-deepquarantine/105358/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/20075124/sl-abstract-machine-learning-digital-brain-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/20075124/sl-abstract-machine-learning-digital-brain-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline u-hidden u-block@md">
				<a href="https://securelist.com/category/research/" class="c-tag c-tag--primary">Research</a>
			</p>
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/attack-on-anti-spam-machine-learning-model-deepquarantine/105358/" class="c-card__link">How and why do we attack our own Anti-Spam?</a></h3>		</header>
						<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/alansavushkin/">
						<span>Alan Savushkin</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/nikitabenkovich/">
						<span>Nikita Benkovich</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/daniilkovalchuk/">
						<span>Daniil Kovalchuk</span></a>
		</li>
						</ul>
			</div>
		</footer>
			</div>
</article>
		</div>
					<div class="o-col-6@sm o-col-3@md">
			<article class="c-card c-card--standard@xs">
		<a href="https://securelist.com/pseudomanuscrypt-a-mass-scale-spyware-attack-campaign/105286/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/15085852/sl_abstract_ics_industrial-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/15085852/sl_abstract_ics_industrial-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline u-hidden u-block@md">
				<a href="https://securelist.com/category/industrial-threats/" class="c-tag c-tag--primary">Industrial threats</a>
			</p>
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/pseudomanuscrypt-a-mass-scale-spyware-attack-campaign/105286/" class="c-card__link">PseudoManuscrypt:  a mass-scale spyware attack campaign</a></h3>		</header>
						<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/icscert/">
						<span>Kaspersky ICS CERT</span></a>
		</li>
						</ul>
			</div>
		</footer>
			</div>
</article>
		</div>
					<div class="o-col-6@sm o-col-3@md">
			<article class="c-card c-card--standard@xs">
		<a href="https://securelist.com/kaspersky-managed-detection-and-response-interesting-cases/105214/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/15092025/abstract-security-alert-sl-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/15092025/abstract-security-alert-sl-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline u-hidden u-block@md">
				<a href="https://securelist.com/category/publications/" class="c-tag c-tag--primary">Publications</a>
			</p>
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/kaspersky-managed-detection-and-response-interesting-cases/105214/" class="c-card__link">Kaspersky Managed Detection and Response: interesting cases</a></h3>		</header>
						<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/petrmareichev/">
						<span>Petr Mareichev</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/sergeysoldatov/">
						<span>Sergey Soldatov</span></a>
		</li>
						</ul>
			</div>
		</footer>
			</div>
</article>
		</div>
					<div class="o-col-6@sm o-col-3@md">
			<article class="c-card c-card--standard@xs">
		<a href="https://securelist.com/kaspersky-security-bulletin-2021-statistics/105205/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/13092058/ksb-2021_Statistics-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/13092058/ksb-2021_Statistics-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
		<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline u-hidden u-block@md">
				<a href="https://securelist.com/category/kaspersky-security-bulletin/" class="c-tag c-tag--primary">Kaspersky Security Bulletin</a>
			</p>
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/kaspersky-security-bulletin-2021-statistics/105205/" class="c-card__link">Kaspersky Security Bulletin 2021. Statistics</a></h3>		</header>
						<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/amr/">
						<span>AMR</span></a>
		</li>
						</ul>
			</div>
		</footer>
			</div>
</article>
		</div>
					</div>
	</div>
</section>
	<section class="c-block c-block--spacing-t-small c-block--spacing-b-small@md c-block--divider-internal">	<div class="o-container-fluid">
			<h5 class="c-block__title">Latest Webinars</h5>
			<div class="o-row o-row--small-gutters@sm c-card__row c-card__row--fixed-width-down@sm js-slider-posts-mobile">
														<div class="o-col-6@sm o-col-3@md">
						<article class="c-card c-card--standard@xs">
	<a href="https://securelist.com/webinars/log4shell-vulnerability-how-to-stay-secure/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/09/09131757/abstract_random_red_code-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
	<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline">
				<a href="https://securelist.com/webinar-category/cyberthreat-talks/" class="c-tag c-tag--primary c-tag--has-icon"><span class="c-tag__icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></span>Cyberthreat talks</a>
			</p>
							<time datetime="2021-12-17T16:00:00+00:00" class="c-card__event-date">17 Dec 2021, 4:00pm</time>
					<h3 class="c-card__title"><a href="https://securelist.com/webinars/log4shell-vulnerability-how-to-stay-secure/" class="c-card__link">The Log4Shell Vulnerability – explained: how to stay secure</a></h3>		</header>
				<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/marcopreuss/">
						<span>Marco Preuss</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/marcrivero/">
						<span>Marc Rivero</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/dandemeter/">
						<span>Dan Demeter</span></a>
		</li>
						</ul>
			</div>
		</footer>
	</div>
</article>
					</div>
													<div class="o-col-6@sm o-col-3@md">
						<article class="c-card c-card--standard@xs">
	<a href="https://securelist.com/webinars/latam-banking-threats-regional-actors-move-global/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/16145841/latam_threats_webinar-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/12/16145841/latam_threats_webinar-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
	<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline">
				<a href="https://securelist.com/webinar-category/cyberthreat-talks/" class="c-tag c-tag--primary c-tag--has-icon"><span class="c-tag__icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></span>Cyberthreat talks</a>
			</p>
							<time datetime="2021-11-30T15:00:00+00:00" class="c-card__event-date">30 Nov 2021, 3:00pm</time>
					<h3 class="c-card__title"><a href="https://securelist.com/webinars/latam-banking-threats-regional-actors-move-global/" class="c-card__link">LatAm banking threats: how regional actors move global and how to fight it back</a></h3>		</header>
				<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/dimitrybestuzhev/">
						<span>Dmitry Bestuzhev</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/oleggorobets/">
						<span>Oleg Gorobets</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/fabioa/">
						<span>Fabio Assolini</span></a>
		</li>
						</ul>
			</div>
		</footer>
	</div>
</article>
					</div>
													<div class="o-col-6@sm o-col-3@md">
						<article class="c-card c-card--standard@xs">
	<a href="https://securelist.com/webinars/advanced-static-malware-analysis-workshop/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/03/22105659/programming-code-abstract-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/03/22105659/programming-code-abstract-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
	<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline">
				<a href="https://securelist.com/webinar-category/trainings-and-workshops/" class="c-tag c-tag--primary c-tag--has-icon"><span class="c-tag__icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></span>Trainings and workshops</a>
			</p>
							<time datetime="2021-12-02T17:00:00+00:00" class="c-card__event-date">02 Dec 2021, 5:00pm</time>
					<h3 class="c-card__title"><a href="https://securelist.com/webinars/advanced-static-malware-analysis-workshop/" class="c-card__link">Advanced automation of static malware analysis. Hands-on workshop</a></h3>		</header>
				<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/igorsoumenkov/">
						<span>Igor Kuznetsov</span></a>
		</li>
						</ul>
			</div>
		</footer>
	</div>
</article>
					</div>
													<div class="o-col-6@sm o-col-3@md">
						<article class="c-card c-card--standard@xs">
	<a href="https://securelist.com/webinars/kaspersky-ask-the-analyst/" class="c-card__figure" style="background-image: url(https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/22124819/ask-the-analyst_webinar-800x450.jpg);">
		<img width="800" height="450" src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2021/11/22124819/ask-the-analyst_webinar-800x450.jpg" class="attachment-securelist-2020-thumbnail size-securelist-2020-thumbnail wp-post-image" alt="" loading="lazy" />	</a>
	<div class="c-card__body">
		<header class="c-card__header">
					<p class="c-card__headline">
				<a href="https://securelist.com/webinar-category/cyberthreat-talks/" class="c-tag c-tag--primary c-tag--has-icon"><span class="c-tag__icon"><svg class="o-icon o-svg-icon o-svg-larger"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-webinar"></use></svg></span>Cyberthreat talks</a>
			</p>
							<time datetime="2021-12-06T17:00:00+00:00" class="c-card__event-date">06 Dec 2021, 5:00pm</time>
					<h3 class="c-card__title"><a href="https://securelist.com/webinars/kaspersky-ask-the-analyst/" class="c-card__link">Ask the Analyst: reach out to Kaspersky&#8217;s best researchers to get their advice on advanced cyberthreats and security issues</a></h3>		</header>
				<footer class="c-card__footer">
			<div class="c-card__authors">
				<ul class="c-list-authors c-list-authors--comma">
								<li>
			<a href="https://securelist.com/author/alexandermazikin/">
						<span>Alexander Mazikin</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/alexeyshulmin/">
						<span>Alexey Shulmin</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/arieljungheit/">
						<span>Ariel Jungheit</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/vladimirkuskov/">
						<span>Vladimir Kuskov</span></a>
		</li>
			<li>
			<a href="https://securelist.com/author/yuliyanovikova/">
						<span>Yuliya Novikova</span></a>
		</li>
						</ul>
			</div>
		</footer>
	</div>
</article>
					</div>
									</div>
		</div>
	</section>
		<section class="c-block c-block--spacing-t-small c-block--spacing-b-small@md c-block--divider-internal">
		<div class="o-container-fluid">
			<h5 class="c-block__title">Reports</h5>
			<div class="o-row o-row--small-gutters">
				<div class="o-col-8@sm">
					<div class="o-row o-row--small-gutters">
																							<div class="o-col-6@md">
												<article class="c-card c-card--standard@xs">
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/scarcruft-surveilling-north-korean-defectors-and-human-rights-activists/105074/" class="c-card__link">ScarCruft surveilling North Korean defectors and human rights activists</a></h3>		</header>
				<div class="c-card__desc">
			<p>The ScarCruft group (also known as APT37 or Temp.Reaper) is a nation-state sponsored APT actor. Recently, we had an opportunity to perform a deeper investigation on a host compromised by this group. </p>
		</div>
					</div>
</article>
						</div>
																							<div class="o-col-6@md c-card__dividers c-card__dividers--hide@md">
												<article class="c-card c-card--standard@xs">
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/wirtes-campaign-in-the-middle-east-living-off-the-land-since-at-least-2019/105044/" class="c-card__link">WIRTE&#8217;s campaign in the Middle East &#8216;living off the land&#8217; since at least 2019</a></h3>		</header>
				<div class="c-card__desc u-hidden u-block@md">
			<p>In this report we provide details on a malicious VBS implant distributed via MS Excel droppers and a fake &#8220;Kaspersky Update Agent&#8221; which we attribute to WIRTE APT who may be linked to Gaza Cybergang.</p>
		</div>
					</div>
</article>
						</div>
																							<div class="o-col-6@md c-card__dividers c-card__dividers--hide@md">
												<article class="c-card c-card--standard@xs">
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/apt-trends-report-q3-2021/104708/" class="c-card__link">APT trends report Q3 2021</a></h3>		</header>
				<div class="c-card__desc u-hidden u-block@md">
			<p>The APT trends reports are based on our threat intelligence research and provide a representative snapshot of what we have discussed in greater detail in our private APT reports. This is our latest installment, focusing on activities that we observed during Q3 2021.</p>
		</div>
					</div>
</article>
						</div>
																							<div class="o-col-6@md c-card__dividers c-card__dividers--hide@md">
												<article class="c-card c-card--standard@xs">
		<div class="c-card__body">
		<header class="c-card__header">
		
		
			<h3 class="c-card__title"><a href="https://securelist.com/lyceum-group-reborn/104586/" class="c-card__link">Lyceum group reborn</a></h3>		</header>
				<div class="c-card__desc u-hidden u-block@md">
			<p>According to older public researches, Lyceum conducted operations against organizations in the energy and telecommunications sectors across the Middle East. In 2021, we have been able to identify a new cluster of the group’s activity, focused on two entities in Tunisia.</p>
		</div>
					</div>
</article>
						</div>
															</div>
				</div>
								<div class="o-col-4@sm u-hidden u-block@sm">
					<div class="c-image c-image--overflow-down@sm">
						<a href="https://xtraining.kaspersky.com/courses/hunt-apts-with-yara-like-a-great-ninja?utm_source=securelist&#038;utm_medium=blog&#038;utm_campaign=gl_yara-launch_ay0073&#038;utm_content=banner&#038;utm_term=gl_securelist_organic_tz7324ysk6dxzt5&#038;redef=1&#038;THRU&#038;reseller=gl_xtr-we-are-open_acq_ona_smm__onl_b2b_securelist_banner_______"><img src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/12/12155219/370x500-YARA-EN-370x500.jpg" /></a>					</div>
				</div>
							</div>
		</div>
	</section>
		<section class="c-block c-block--spacing-t-small c-block--spacing-b-small@md">
		<div class="o-container-fluid">
			<div class="o-row c-block__row u-flex-nowrap@md">
				<div class="o-col">
					<div class="c-block__header">
						<h5 class="c-block__title">Subscribe to our weekly e-mails</h5>
						<p>The hottest research right in your inbox</p>
					</div>
				</div>
				<div class="o-col u-flex-shrink-0 u-flex-grow">
					<div class="c-form--newsletter u-ml-auto">
						
                <div class='gf_browser_chrome gform_wrapper gform_wrapper_original_id_11 subscribe-mc_wrapper' id='gform_wrapper_1486646204' ><div id='gf_1486646204' class='gform_anchor' tabindex='-1'></div><form method='post' enctype='multipart/form-data' target='gform_ajax_frame_1486646204' id='gform_1486646204' class='subscribe-mc' action='/an-overview-of-targeted-attacks-and-apts-on-linux/98440/#gf_1486646204'>
                        <div class="gform-content-wrapper"><div class='gform_body'><ul id='gform_fields_1486646204' class='gform_fields top_label form_sublabel_below description_below'><li id='field_1486646204_1'  class='gfield gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible' ><label class='gfield_label' for='input_1486646204_1' ><span class='gfield_required'>*</span></label><div class='ginput_container ginput_container_email'>
                            <input name='input_1' id='input_1486646204_1' type='text' value='' class='medium'   placeholder='Email' aria-required="true" aria-invalid="false" />
                        </div></li><li id='field_1486646204_3'  class='gfield js-kaspersky-gform-recaptcha-placeholder gform_hidden field_sublabel_below field_description_below gfield_visibility_hidden' ><input name='input_3' id='input_1486646204_3' type='hidden' class='gform_hidden'  aria-invalid="false" value='' /></li><li id='field_1486646204_2'  class='gfield input-without-label label-gdpr gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible' ><label class='gfield_label'  ><span class='gfield_required'>*</span></label><div class='ginput_container ginput_container_checkbox'><ul class='gfield_checkbox' id='input_1486646204_2'><li class='gchoice_11_2_1'>
								<input name='input_2.1' type='checkbox'  value='I agree'  id='choice_1486646204_11_2_1'   />
								<label for='choice_1486646204_11_2_1' id='label_1486646204_11_2_1'>I agree to provide my email address to “AO Kaspersky Lab” to receive information about new posts on the site. I understand that I can withdraw this consent at any time via e-mail by clicking the “unsubscribe” link that I find at the bottom of any e-mail sent to me for the purposes mentioned above.</label>
							</li></ul></div></li>
                            </ul></div>
        <div class='gform_footer top_label'> 	<button class="gform_button button" type="submit" id='gform_submit_button_1486646204' value="Sign up">
		<svg class="o-icon o-svg-icon o-svg-large u-hidden u-inline-block@sm"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-envelope"></use></svg>		<span class="u-hidden u-inline@sm">Subscribe</span>
		<span class="u-hidden@sm"><svg class="o-icon o-svg-icon o-svg-right"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-arrow"></use></svg></span>
	</button>
		 <input type='hidden' name='gform_ajax' value='form_id=11&amp;title=&amp;description=&amp;tabindex=0' />
            <input type='hidden' class='gform_hidden' name='is_submit_11' value='1' />
            <input type='hidden' class='gform_hidden' name='gform_submit' value='11' />
            
            <input type='hidden' class='gform_hidden' name='gform_unique_id' value='' />
            <input type='hidden' class='gform_hidden' name='state_11' value='WyJbXSIsImIwODQwZTA2ZGQ0NzYwODcyOTBkZjNmZDM1NDk2Y2ZkIl0=' />
            <input type='hidden' class='gform_hidden' name='gform_target_page_number_11' id='gform_target_page_number_1486646204_11' value='0' />
            <input type='hidden' class='gform_hidden' name='gform_source_page_number_11' id='gform_source_page_number_1486646204_11' value='1' />
            <input type='hidden' name='gform_random_id' value='1486646204' /><input type='hidden' name='gform_field_values' value='securelist_2020_form_location=' />
            
        </div>
                        </div></form>
                        </div>
                <iframe style='display:none;width:0px;height:0px;' src='about:blank' name='gform_ajax_frame_1486646204' id='gform_ajax_frame_1486646204'>This iframe contains the logic required to handle Ajax powered Gravity Forms.</iframe>
                <script type='text/javascript'>jQuery(document).ready(function($){gformInitSpinner( 1486646204, 'https://securelist.com/wp-content/themes/securelist2020/assets/images/content/ajax-spinner-red.svg' );jQuery('#gform_ajax_frame_1486646204').on('load',function(){var contents = jQuery(this).contents().find('*').html();var is_postback = contents.indexOf('GF_AJAX_POSTBACK') >= 0;if(!is_postback){return;}var form_content = jQuery(this).contents().find('#gform_wrapper_1486646204');var is_confirmation = jQuery(this).contents().find('#gform_confirmation_wrapper_1486646204').length > 0;var is_redirect = contents.indexOf('gformRedirect(){') >= 0;var is_form = form_content.length > 0 && ! is_redirect && ! is_confirmation;var mt = parseInt(jQuery('html').css('margin-top'), 10) + parseInt(jQuery('body').css('margin-top'), 10) + 100;if(is_form){jQuery('#gform_wrapper_1486646204').html(form_content.html());if(form_content.hasClass('gform_validation_error')){jQuery('#gform_wrapper_1486646204').addClass('gform_validation_error');} else {jQuery('#gform_wrapper_1486646204').removeClass('gform_validation_error');}setTimeout( function() { /* delay the scroll by 50 milliseconds to fix a bug in chrome */ jQuery(document).scrollTop(jQuery('#gform_wrapper_1486646204').offset().top - mt); }, 50 );if(window['gformInitDatepicker']) {gformInitDatepicker();}if(window['gformInitPriceFields']) {gformInitPriceFields();}var current_page = jQuery('#gform_source_page_number_1486646204_11').val();gformInitSpinner( 1486646204, 'https://securelist.com/wp-content/themes/securelist2020/assets/images/content/ajax-spinner-red.svg' );jQuery(document).trigger('gform_page_loaded', [1486646204, current_page]);window['gf_submitting_1486646204'] = false;}else if(!is_redirect){var confirmation_content = jQuery(this).contents().find('.GF_AJAX_POSTBACK').html();if(!confirmation_content){confirmation_content = contents;}setTimeout(function(){jQuery('#gform_wrapper_1486646204').replaceWith(confirmation_content);jQuery(document).scrollTop(jQuery('#gf_1486646204').offset().top - mt);jQuery(document).trigger('gform_confirmation_loaded', [1486646204]);window['gf_submitting_1486646204'] = false;}, 50);}else{jQuery('#gform_1486646204').append(contents);if(window['gformRedirect']) {gformRedirect();}}jQuery(document).trigger('gform_post_render', [1486646204, current_page]);} );} );</script><script type='text/javascript'> jQuery(document).bind('gform_post_render', function(event, formId, currentPage){if(formId == 1486646204) {if(typeof Placeholders != 'undefined'){
                        Placeholders.enable();
                    }} } );jQuery(document).bind('gform_post_conditional_logic', function(event, formId, fields, isInit){} );</script><script type='text/javascript'> jQuery(document).ready(function(){jQuery(document).trigger('gform_post_render', [1486646204, 1]) } ); </script>					</div>
				</div>
			</div>
						<div class="u-hidden@sm u-mb-spacer-base-">
				<div class="c-image c-image--overflow-down@sm">
					<a href="https://xtraining.kaspersky.com/courses/hunt-apts-with-yara-like-a-great-ninja?utm_source=securelist&#038;utm_medium=blog&#038;utm_campaign=gl_yara-launch_ay0073&#038;utm_content=banner&#038;utm_term=gl_securelist_organic_tz7324ysk6dxzt5&#038;redef=1&#038;THRU&#038;reseller=gl_xtr-we-are-open_acq_ona_smm__onl_b2b_securelist_banner_______"><img src="https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2020/12/17122833/370x370-Hunt-APT-YARA-EN-370x370.jpg" /></a>				</div>
			</div>
					</div>
	</section>
	</div><!-- /.c-page -->

<section class="c-block c-block--spacing-t-small c-block--spacing-t-large@md c-block--spacing-b c-page-footer c-block--bg-image c-color--invert" style="background-image: url(https://securelist.com/wp-content/themes/securelist2020/assets/images/content/bg-gradient-02.jpg);">
	<div class="o-container-fluid">
		<div class="c-page-footer__content">
			<div class="o-row o-row--reverse">
				<div class="o-col-9@md">
					<div class="c-page-menu">
						<div class="o-row c-page-menu__dividers">
							<div class="o-col-4@md"><div class="c-accordion js-accordion c-accordion--reset@md"><p class="menu-item-threats section-title accordion menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-226 c-page-menu__title u-hidden u-block@md"><a href="https://securelist.com/threat-categories/">Threats</a></p><div class="c-accordion-toggle js-accordion-toggle"><p>Threats</p></div><div class="c-accordion-container js-accordion-container">
<ul class="sub-menu">
	<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category current-post-ancestor current-menu-parent current-post-parent menu-item-99839"><a href="https://securelist.com/threat-category/apt-targeted-attacks/">APT (Targeted attacks)</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-89457"><a href="https://securelist.com/threat-category/secure-environment/">Secure environment (IoT)</a></li>
	<li class="topic-item vulnerabilities menu-item menu-item-type-custom menu-item-object-custom menu-item-63231"><a href="https://securelist.com/threat-category/mobile-threats/">Mobile threats</a></li>
	<li class="topic-item detected menu-item menu-item-type-custom menu-item-object-custom menu-item-63229"><a href="https://securelist.com/threat-category/financial-threats/">Financial threats</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-89458"><a href="https://securelist.com/threat-category/spam-and-phishing/">Spam and phishing</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-99840"><a href="https://securelist.com/threat-category/industrial-threats/">Industrial threats</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-threat-category menu-item-89465"><a href="https://securelist.com/threat-category/web-threats/">Web threats</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-89459"><a href="https://securelist.com/threat-category/vulnerabilities-and-exploits/">Vulnerabilities and exploits</a></li>
</ul>
</li>
</li></ul></div></div></div><div class="o-col-4@md"><div class="c-accordion js-accordion c-accordion--reset@md"><p class="menu-item-categories section-title accordion menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-230 c-page-menu__title u-hidden u-block@md"><a href="https://securelist.com/categories/">Categories</a></p><div class="c-accordion-toggle js-accordion-toggle"><p>Categories</p></div><div class="c-accordion-container js-accordion-container">
<ul class="sub-menu">
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84158"><a href="https://securelist.com/category/apt-reports/">APT reports</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-99841"><a href="https://securelist.com/category/malware-descriptions/">Malware descriptions</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84160"><a href="https://securelist.com/category/kaspersky-security-bulletin/">Security Bulletin</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84161"><a href="https://securelist.com/category/malware-reports/">Malware reports</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-89460"><a href="https://securelist.com/category/spam-and-phishing-reports/">Spam and phishing reports</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-99842"><a href="https://securelist.com/category/security-technologies/">Security technologies</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-84165"><a href="https://securelist.com/category/research/">Research</a></li>
	<li class="menu-item menu-item-type-taxonomy menu-item-object-category current-post-ancestor current-menu-parent current-post-parent menu-item-84164"><a href="https://securelist.com/category/publications/">Publications</a></li>
</ul>
</li>
</li></ul></div></div></div><div class="o-col-4@md"><p class="menu-item-tags section-title after-accordion menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-277 c-page-menu__title u-hidden u-block@md"><a>Other sections</a></p>
<ul class="sub-menu">
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-100526"><a href="https://securelist.com/all/">Archive</a></li>
	<li class="show-all-tags menu-item menu-item-type-post_type menu-item-object-page menu-item-57837"><a href="https://securelist.com/tags/">All tags</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-101956"><a href="https://securelist.com/webinars/">Webinars</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-101126"><a target="_blank" rel="noopener noreferrer" href="https://apt.securelist.com/">APT Logbook</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-241"><a target="_blank" rel="noopener noreferrer" href="https://statistics.securelist.com/">Statistics</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-86643"><a target="_blank" rel="noopener noreferrer" href="https://encyclopedia.kaspersky.com/">Encyclopedia</a></li>
	<li class="menu-item menu-item-type-custom menu-item-object-custom menu-item-58141"><a target="_blank" rel="noopener noreferrer" href="https://threats.kaspersky.com/">Threats descriptions</a></li>
	<li class="menu-item menu-item-type-post_type menu-item-object-page menu-item-104901"><a href="https://securelist.com/ksb-2021/">KSB 2021</a></li>
</ul>
</li>
</div>						</div>
					</div>
				</div>
				<div class="o-col-3@md">
					<div class="c-site-logo c-site-logo--kaspersky"></div>
				</div>
			</div>
		</div>
		<div class="c-page-footer__wrapper">
			<div class="c-page-footer__info">
								<p>© 2021 AO Kaspersky Lab. All Rights Reserved.<br />
Registered trademarks and service marks are the property of their respective owners.</p>
							</div>
			<div class="c-page-footer__links">
				<ul>
																<li><a href="https://www.kaspersky.com/web-privacy-policy">Privacy Policy</a></li>
																<li><a href="https://www.kaspersky.com/end-user-license-agreement">License Agreement</a></li>
																<li><a href="javascript: void(0);" onclick="javascript: Cookiebot.renew()">Cookies</a></li>
									</ul>
			</div>
		</div>
	</div>
</section>

<div id="modal-newsletter" class="c-modal__wrapper c-modal__wrapper--sm mfp-hide">
	<div class="c-modal">
		<a href="#" class="c-modal-close js-modal-close"></a>
		<div class="c-modal__main">
			<div class="c-block c-block--spacing-t-small c-block--spacing-b-small">
				<div class="o-container-fluid">
					<div class="c-block__header">
						<h5 class="c-title--small">Subscribe to our weekly e-mails</h5>
						<p>The hottest research right in your inbox</p>
					</div>
					<div class="c-form--float-labels js-float-labels">
						
                <div class='gf_browser_chrome gform_wrapper gform_wrapper_original_id_11 subscribe-mc_wrapper' id='gform_wrapper_3424034351' ><div id='gf_3424034351' class='gform_anchor' tabindex='-1'></div><form method='post' enctype='multipart/form-data' target='gform_ajax_frame_3424034351' id='gform_3424034351' class='subscribe-mc' action='/an-overview-of-targeted-attacks-and-apts-on-linux/98440/#gf_3424034351'>
                        <div class="gform-content-wrapper"><div class='gform_body'><ul id='gform_fields_3424034351' class='gform_fields top_label form_sublabel_below description_below'><li id='field_3424034351_1'  class='gfield gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible' ><label class='gfield_label' for='input_3424034351_1' ><span class='gfield_required'>*</span></label><div class='ginput_container ginput_container_email'>
                            <input name='input_1' id='input_3424034351_1' type='text' value='' class='medium'   placeholder='Email' aria-required="true" aria-invalid="false" />
                        </div></li><li id='field_3424034351_3'  class='gfield js-kaspersky-gform-recaptcha-placeholder gform_hidden field_sublabel_below field_description_below gfield_visibility_hidden' ><input name='input_3' id='input_3424034351_3' type='hidden' class='gform_hidden'  aria-invalid="false" value='' /></li><li id='field_3424034351_2'  class='gfield input-without-label label-gdpr gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible' ><label class='gfield_label'  ><span class='gfield_required'>*</span></label><div class='ginput_container ginput_container_checkbox'><ul class='gfield_checkbox' id='input_3424034351_2'><li class='gchoice_11_2_1'>
								<input name='input_2.1' type='checkbox'  value='I agree'  id='choice_3424034351_11_2_1'   />
								<label for='choice_3424034351_11_2_1' id='label_3424034351_11_2_1'>I agree to provide my email address to “AO Kaspersky Lab” to receive information about new posts on the site. I understand that I can withdraw this consent at any time via e-mail by clicking the “unsubscribe” link that I find at the bottom of any e-mail sent to me for the purposes mentioned above.</label>
							</li></ul></div></li>
                            </ul></div>
        <div class='gform_footer top_label'> 	<button type="submit" class="gform_button button" id='gform_submit_button_3424034351' value="Sign up">
		<svg class="o-icon o-svg-icon o-svg-large"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://securelist.com/wp-content/themes/securelist2020/assets/sprite/icons.svg#icon-envelope"></use></svg>		<span>Subscribe</span>
	</button>

	 <input type='hidden' name='gform_ajax' value='form_id=11&amp;title=&amp;description=&amp;tabindex=0' />
            <input type='hidden' class='gform_hidden' name='is_submit_11' value='1' />
            <input type='hidden' class='gform_hidden' name='gform_submit' value='11' />
            
            <input type='hidden' class='gform_hidden' name='gform_unique_id' value='' />
            <input type='hidden' class='gform_hidden' name='state_11' value='WyJbXSIsImIwODQwZTA2ZGQ0NzYwODcyOTBkZjNmZDM1NDk2Y2ZkIl0=' />
            <input type='hidden' class='gform_hidden' name='gform_target_page_number_11' id='gform_target_page_number_3424034351_11' value='0' />
            <input type='hidden' class='gform_hidden' name='gform_source_page_number_11' id='gform_source_page_number_3424034351_11' value='1' />
            <input type='hidden' name='gform_random_id' value='3424034351' /><input type='hidden' name='gform_field_values' value='securelist_2020_form_location=sidebar' />
            
        </div>
                        </div></form>
                        </div>
                <iframe style='display:none;width:0px;height:0px;' src='about:blank' name='gform_ajax_frame_3424034351' id='gform_ajax_frame_3424034351'>This iframe contains the logic required to handle Ajax powered Gravity Forms.</iframe>
                <script type='text/javascript'>jQuery(document).ready(function($){gformInitSpinner( 3424034351, 'https://securelist.com/wp-content/themes/securelist2020/assets/images/content/ajax-spinner-red.svg' );jQuery('#gform_ajax_frame_3424034351').on('load',function(){var contents = jQuery(this).contents().find('*').html();var is_postback = contents.indexOf('GF_AJAX_POSTBACK') >= 0;if(!is_postback){return;}var form_content = jQuery(this).contents().find('#gform_wrapper_3424034351');var is_confirmation = jQuery(this).contents().find('#gform_confirmation_wrapper_3424034351').length > 0;var is_redirect = contents.indexOf('gformRedirect(){') >= 0;var is_form = form_content.length > 0 && ! is_redirect && ! is_confirmation;var mt = parseInt(jQuery('html').css('margin-top'), 10) + parseInt(jQuery('body').css('margin-top'), 10) + 100;if(is_form){jQuery('#gform_wrapper_3424034351').html(form_content.html());if(form_content.hasClass('gform_validation_error')){jQuery('#gform_wrapper_3424034351').addClass('gform_validation_error');} else {jQuery('#gform_wrapper_3424034351').removeClass('gform_validation_error');}setTimeout( function() { /* delay the scroll by 50 milliseconds to fix a bug in chrome */ jQuery(document).scrollTop(jQuery('#gform_wrapper_3424034351').offset().top - mt); }, 50 );if(window['gformInitDatepicker']) {gformInitDatepicker();}if(window['gformInitPriceFields']) {gformInitPriceFields();}var current_page = jQuery('#gform_source_page_number_3424034351_11').val();gformInitSpinner( 3424034351, 'https://securelist.com/wp-content/themes/securelist2020/assets/images/content/ajax-spinner-red.svg' );jQuery(document).trigger('gform_page_loaded', [3424034351, current_page]);window['gf_submitting_3424034351'] = false;}else if(!is_redirect){var confirmation_content = jQuery(this).contents().find('.GF_AJAX_POSTBACK').html();if(!confirmation_content){confirmation_content = contents;}setTimeout(function(){jQuery('#gform_wrapper_3424034351').replaceWith(confirmation_content);jQuery(document).scrollTop(jQuery('#gf_3424034351').offset().top - mt);jQuery(document).trigger('gform_confirmation_loaded', [3424034351]);window['gf_submitting_3424034351'] = false;}, 50);}else{jQuery('#gform_3424034351').append(contents);if(window['gformRedirect']) {gformRedirect();}}jQuery(document).trigger('gform_post_render', [3424034351, current_page]);} );} );</script><script type='text/javascript'> jQuery(document).bind('gform_post_render', function(event, formId, currentPage){if(formId == 3424034351) {if(typeof Placeholders != 'undefined'){
                        Placeholders.enable();
                    }} } );jQuery(document).bind('gform_post_conditional_logic', function(event, formId, fields, isInit){} );</script><script type='text/javascript'> jQuery(document).ready(function(){jQuery(document).trigger('gform_post_render', [3424034351, 1]) } ); </script>					</div>
				</div>
			</div>
		</div><!-- /.c-modal__main -->
	</div><!-- /.c-modal -->
</div><!-- /.c-modal__wrapper -->
<script src="//static.ads-twitter.com/oct.js" type="text/javascript"></script>
<script type="text/javascript">twttr.conversion.trackPid('ntt0i', { tw_sale_amount: 0, tw_order_quantity: 0 });</script>
<noscript>
<img height="1" width="1" style="display:none;" alt="" src="https://analytics.twitter.com/i/adsct?txn_id=ntt0i&p_id=Twitter&tw_sale_amount=0&tw_order_quantity=0" />
<img height="1" width="1" style="display:none;" alt="" src="//t.co/i/adsct?txn_id=ntt0i&p_id=Twitter&tw_sale_amount=0&tw_order_quantity=0" />
</noscript><script type='text/javascript'>
var colomatduration = 'fast';
var colomatslideEffect = 'slideFade';
var colomatpauseInit = '';
var colomattouchstart = '';
</script>            <!-- Facebook Pixel Image -->
            <noscript><img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=839281392784015&amp;ev=PageView&amp;noscript=1" /></noscript>
            <!-- End Facebook Pixel Image -->
                        <script type="text/javascript">
            if ( typeof _recaptcha_wordpress_savedcomment != 'undefined') {
                document.getElementById('comment').value =
                    _recaptcha_wordpress_savedcomment;
            }
            </script><script type='text/javascript' src='https://kasperskycontenthub.com/securelist/wp-content/plugins/kaspersky-embeds/js/scripts.js?ver=1.0' id='kspr_embeds-js'></script>
<script type='text/javascript' src='https://www.google.com/recaptcha/api.js?render=explicit&#038;ver=202124050927' id='kaspersky-dynamic-gravity-forms-google-recaptcha-js'></script>
<script type='text/javascript' id='kaspersky-omniture-js-extra'>
/* <![CDATA[ */
var kaspersky = {"pageName":"Kaspersky Securelist","pageType":"blog","platformName":"Micro Site","businessType":"b2c","siteLocale":"en-GLOBAL"};
/* ]]> */
</script>
<script type='text/javascript' src='//media.kaspersky.com/tracking/omniture/s_code_single_suite.js?ver=5.8.2' id='kaspersky-omniture-js'></script>
<script type='text/javascript' id='crayon_js-js-extra'>
/* <![CDATA[ */
var CrayonSyntaxSettings = {"version":"_2.7.2_beta","is_admin":"0","ajaxurl":"https:\/\/securelist.com\/wp-admin\/admin-ajax.php","prefix":"crayon-","setting":"crayon-setting","selected":"crayon-setting-selected","changed":"crayon-setting-changed","special":"crayon-setting-special","orig_value":"data-orig-value","debug":""};
var CrayonSyntaxStrings = {"copy":"Press %s to Copy, %s to Paste","minimize":"Click To Expand Code"};
/* ]]> */
</script>
<script type='text/javascript' id='kaspersky-dynamic-gravity-forms-main-js-extra'>
/* <![CDATA[ */
var kasperskyDynamicaReCaptchaData = {"ajaxUrl":"https:\/\/securelist.com\/wp-admin\/admin-ajax.php"};
/* ]]> */
</script>
<script type='text/javascript' id='wp-autosearch-script-js-extra'>
/* <![CDATA[ */
var wp_autosearch_config = {"autocomplete_taxonomies":{"0":"category"},"split_results_by_type":"true","search_title":"true","search_content":"false","search_terms":"false","search_exactonly":"true","order_by":"title","order":"DESC","search_comments":"false","search_tags":"false","no_of_results":"5","description_limit":"100","title_limit":"50","excluded_ids":{},"excluded_cats":{},"full_search_url":"https:\/\/kasperskycontenthub.com\/securelist\/?s=%q%","min_chars":"3","ajax_delay":"200","cache_length":"200","autocomplete_sortorder":"posts","thumb_image_display":"false","thumb_image_width":"50","thumb_image_height":"50","get_first_image":"true","force_resize_first_image":"true","thumb_image_crop":"true","default_image":"https:\/\/kasperskycontenthub.com\/securelist\/wp-content\/plugins\/wp-autosearch\/assert\/image\/default.png","search_image":"https:\/\/kasperskycontenthub.com\/securelist\/wp-content\/plugins\/wp-autosearch\/assert\/image\/search-icon.png","display_more_bar":"false","display_result_title":"false","enable_token":"true","custom_css":"","custom_js":"","try_full_search_text":"Search more...","no_results_try_full_search_text":"No Results!","show_author":"false","show_date":"false","description_result":"false","color":{"results_even_bar":"E8E8E8","results_odd_bar":"FFFFFF","results_even_text":"000000","results_odd_text":"000000","results_hover_bar":"5CCCB2","results_hover_text":"FFFFFF","seperator_bar":"2D8DA0","seperator_hover_bar":"6A81A0","seperator_text":"FFFFFF","seperator_hover_text":"FFFFFF","more_bar":"5286A0","more_hover_bar":"4682A0","more_text":"FFFFFF","more_hover_text":"FFFFFF","box_border":"57C297","box_background":"FFFFFF","box_text":"000000"},"title":{"page":"Pages","post":"Posts","webinars":"Webinars"},"post_types":{"0":"page","1":"post"},"nonce":"b390b0b9c3","ajax_url":"https:\/\/securelist.com\/wp-admin\/admin-ajax.php"};
/* ]]> */
</script>
<script type='text/javascript' id='securelist-script-js-extra'>
/* <![CDATA[ */
var securelist2020Data = {"ajaxUrl":"https:\/\/securelist.com\/wp-admin\/admin-ajax.php","loading":"Loading...","marketoBaseURL":"","marketoVirtualForm":"27241","munchkinID":"802-IJN-240","reCaptcha_key":"6Lf2eUQUAAAAAC-GQSZ6R2pjePmmD6oA6F_3AV7j"};
/* ]]> */
</script>
<script type='text/javascript' src='//assets.kasperskycontenthub.com/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/crayon-syntax-highlighter/js/min/crayon.min.js,wp-content/plugins/kaspersky-gravity-forms-dynamic-recaptcha/assets/js/main.js,wp-content/plugins/kaspersky-wp-autosearch/assert/js/migrate.js,wp-content/plugins/kaspersky-wp-autosearch/assert/js/autocomplete.js,wp-content/plugins/kaspersky-wp-autosearch/assert/js/ajax-script.js,wp-content/plugins/wds-no-login-autocomplete/js/script.js,wp-content/themes/securelist2020/assets/js/main.js,wp-includes/js/comment-reply.min.js,wp-includes/js/wp-embed.min.js,wp-content/plugins/akismet/_inc/form.js&#038;ver=4f063e4c'></script>
<script type='text/javascript' src='//assets.kasperskycontenthub.com/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/gravityforms/js/jquery.json.min.js,wp-content/plugins/gravityforms/js/placeholders.jquery.min.js&#038;ver=4f063e4c'></script>
<script type='text/javascript' id='gform_gravityforms-js-extra'>
/* <![CDATA[ */
var gf_global = {"gf_currency_config":{"name":"U.S. Dollar","symbol_left":"$","symbol_right":"","symbol_padding":"","thousand_separator":",","decimal_separator":".","decimals":2},"base_url":"https:\/\/securelist.com\/wp-content\/plugins\/gravityforms","number_formats":[],"spinnerUrl":"https:\/\/securelist.com\/wp-content\/plugins\/gravityforms\/images\/spinner.gif"};
var gf_global = {"gf_currency_config":{"name":"U.S. Dollar","symbol_left":"$","symbol_right":"","symbol_padding":"","thousand_separator":",","decimal_separator":".","decimals":2},"base_url":"https:\/\/securelist.com\/wp-content\/plugins\/gravityforms","number_formats":[],"spinnerUrl":"https:\/\/securelist.com\/wp-content\/plugins\/gravityforms\/images\/spinner.gif"};
var gf_global = {"gf_currency_config":{"name":"U.S. Dollar","symbol_left":"$","symbol_right":"","symbol_padding":"","thousand_separator":",","decimal_separator":".","decimals":2},"base_url":"https:\/\/securelist.com\/wp-content\/plugins\/gravityforms","number_formats":[],"spinnerUrl":"https:\/\/securelist.com\/wp-content\/plugins\/gravityforms\/images\/spinner.gif"};
/* ]]> */
</script>
<script type='text/javascript' src='https://securelist.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.4.17.15' id='gform_gravityforms-js'></script>


<!-- Powered by Whitelist IP For Limit Login Attempts | URL: http://club.orbisius.com/products/wordpress-plugins/whitelist-ip-for-limit-login-attempts/ -->


</body>
</html>
